{"id":527,"date":"2016-03-24T19:14:54","date_gmt":"2016-03-24T19:14:54","guid":{"rendered":"http:\/\/www.balajibandi.com\/?p=527"},"modified":"2017-09-24T19:50:08","modified_gmt":"2017-09-24T18:50:08","slug":"ipsec-remote-access-vpn","status":"publish","type":"post","link":"https:\/\/www.balajibandi.com\/?p=527","title":{"rendered":"IPsec Remote-Access VPN"},"content":{"rendered":"<h1><span style=\"text-decoration: underline;\"><span style=\"color: #3366ff;\"><strong>IPsec Remote-Access VPN<\/strong><\/span><\/span><\/h1>\n<p>Part of the CCIE Sec Journey created a Remote Access VPN setup.<\/p>\n<p>Physical Diagram for the LAB<\/p>\n<p id=\"AsoJlXV\"><img loading=\"lazy\" decoding=\"async\" width=\"715\" height=\"714\" class=\"alignnone size-full wp-image-528 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76dfee0b93.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76dfee0b93.png 715w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76dfee0b93-150x150.png 150w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76dfee0b93-300x300.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76dfee0b93-100x100.png 100w\" sizes=\"auto, (max-width: 715px) 100vw, 715px\" \/><\/p>\n<p>I have used below Version of ASAv and ASDM<\/p>\n<p id=\"vCkQgda\"><img loading=\"lazy\" decoding=\"async\" width=\"563\" height=\"120\" class=\"alignnone size-full wp-image-529 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76e84bbfec.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76e84bbfec.png 563w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c76e84bbfec-300x64.png 300w\" sizes=\"auto, (max-width: 563px) 100vw, 563px\" \/><\/p>\n<p>IP address and Physical connectivity as shown as above pictures.<\/p>\n<p>RAS pool of address 200.200.200.X \/24<\/p>\n<p>Before proceeding further, i expect all the devices have L3 connectivity.<\/p>\n<p>Make sure Branch router \/ Windows PC able to ping 192.168.1.249 ( ASAv). If all devices have reachable. move to next level to configure Remove Access VPN.<\/p>\n<p>Connect to ASAv with your ASDM.<\/p>\n<p>its easy to ASDM to create remove access VPN with Wizard.<\/p>\n<p id=\"KdPtInu\"><img loading=\"lazy\" decoding=\"async\" width=\"838\" height=\"309\" class=\"alignnone size-full wp-image-532 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7da6cb120d.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7da6cb120d.png 838w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7da6cb120d-300x111.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7da6cb120d-768x283.png 768w\" sizes=\"auto, (max-width: 838px) 100vw, 838px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p id=\"nFsUpeL\"><img loading=\"lazy\" decoding=\"async\" width=\"838\" height=\"506\" class=\"alignnone size-full wp-image-534 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7db47a7799.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7db47a7799.png 838w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7db47a7799-300x181.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7db47a7799-768x464.png 768w\" sizes=\"auto, (max-width: 838px) 100vw, 838px\" \/><\/p>\n<p>Notice the option on the screen above that is selected by default. This allows IPsec sessions to bypass access lists applied on the interface.<\/p>\n<p>The default selected interface is\u00a0<em>outside<\/em>, which is where we want to configure this VPN, so I will click on the\u00a0<em>Next<\/em>button.<\/p>\n<p id=\"mGfuclH\"><img loading=\"lazy\" decoding=\"async\" width=\"838\" height=\"503\" class=\"alignnone size-full wp-image-535 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbab2674b.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbab2674b.png 838w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbab2674b-300x180.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbab2674b-768x461.png 768w\" sizes=\"auto, (max-width: 838px) 100vw, 838px\" \/><\/p>\n<p>We will be using the Cisco VPN client, so I will leave the default option selected and click\u00a0<em>Next<\/em>.<\/p>\n<p id=\"bYQfBGp\"><img loading=\"lazy\" decoding=\"async\" width=\"836\" height=\"502\" class=\"alignnone size-full wp-image-536 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbf1a71ff.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbf1a71ff.png 836w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbf1a71ff-300x180.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dbf1a71ff-768x461.png 768w\" sizes=\"auto, (max-width: 836px) 100vw, 836px\" \/><\/p>\n<p>\u00a0I have configured a tunnel group name of bblab-RAS-VPN and a pre-shared key of bbcisco.<\/p>\n<p>(change as per your setup)<\/p>\n<p id=\"GNnrjKV\"><img loading=\"lazy\" decoding=\"async\" width=\"833\" height=\"501\" class=\"alignnone size-full wp-image-537 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc23b2d6b.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc23b2d6b.png 833w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc23b2d6b-300x180.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc23b2d6b-768x462.png 768w\" sizes=\"auto, (max-width: 833px) 100vw, 833px\" \/><\/p>\n<p>we select the method with which to authenticate the remote users. In the step before this, we configured a pre-shared key for the tunnel group.<\/p>\n<p id=\"DgekvrD\"><img loading=\"lazy\" decoding=\"async\" width=\"830\" height=\"503\" class=\"alignnone size-full wp-image-538 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc60c0b53.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc60c0b53.png 830w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc60c0b53-300x182.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc60c0b53-768x465.png 768w\" sizes=\"auto, (max-width: 830px) 100vw, 830px\" \/><\/p>\n<p>Because we specified that we want to use the local database for client authentication, the wizard prompts us to add usernames.\u00a0I will add another user with username and password of bbcisco.<\/p>\n<p id=\"geXuQuy\"><img loading=\"lazy\" decoding=\"async\" width=\"835\" height=\"494\" class=\"alignnone size-full wp-image-539 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc8c60bfe.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc8c60bfe.png 835w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc8c60bfe-300x177.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dc8c60bfe-768x454.png 768w\" sizes=\"auto, (max-width: 835px) 100vw, 835px\" \/><\/p>\n<p>When a users connects using the VPN client, User will be assigned an IP address from an IP address pool that we configure. This is one of the reasons to have a remote access VPN, because it makes remote users become \u201cpart\u201d of the internal network. I will click on the\u00a0<em>New<\/em>\u00a0button to add a local IP pool, as shown below:<\/p>\n<p>&nbsp;<\/p>\n<p id=\"aWjTfAm\"><img loading=\"lazy\" decoding=\"async\" width=\"836\" height=\"505\" class=\"alignnone size-full wp-image-540 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dd89bf773.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dd89bf773.png 836w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dd89bf773-300x181.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dd89bf773-768x464.png 768w\" sizes=\"auto, (max-width: 836px) 100vw, 836px\" \/><\/p>\n<p>I have used 200.200.200.0\/24. please change the IP address range based on your setup.<\/p>\n<p id=\"hIovrNu\"><img loading=\"lazy\" decoding=\"async\" width=\"835\" height=\"504\" class=\"alignnone size-full wp-image-541 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7ddc275d1a.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7ddc275d1a.png 835w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7ddc275d1a-300x181.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7ddc275d1a-768x464.png 768w\" sizes=\"auto, (max-width: 835px) 100vw, 835px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p id=\"KucrAem\"><img loading=\"lazy\" decoding=\"async\" width=\"836\" height=\"502\" class=\"alignnone size-full wp-image-542 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7de3ace61d.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7de3ace61d.png 836w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7de3ace61d-300x180.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7de3ace61d-768x461.png 768w\" sizes=\"auto, (max-width: 836px) 100vw, 836px\" \/><\/p>\n<p>DNS entry, change as per your DNS Server.<\/p>\n<p>Wizard gives us the option of performing a NAT exemption so that all internal networks will be visible to remote users without any translation. Also, notice that I have selected the option to enable split tunneling. Split tunneling allows remote access VPN users to access specified networks (e.g., 100.100.100.0\/24 ) through the VPN but all other traffic (e.g., Internet traffic) goes through the client\u2019s normal gateway without going through the tunnel. If split tunneling is not enabled, even the remote access user\u2019s Internet traffic will go through the VPN tunnel. This may be desired; it all depends on the network and your setup.<\/p>\n<p id=\"pFRWdGm\"><img loading=\"lazy\" decoding=\"async\" width=\"835\" height=\"502\" class=\"alignnone size-full wp-image-543 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfa1512d0.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfa1512d0.png 835w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfa1512d0-300x180.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfa1512d0-768x462.png 768w\" sizes=\"auto, (max-width: 835px) 100vw, 835px\" \/><\/p>\n<p>Final config. :<\/p>\n<p id=\"xoYCKyi\"><img loading=\"lazy\" decoding=\"async\" width=\"835\" height=\"500\" class=\"alignnone size-full wp-image-545 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfda3ad46.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfda3ad46.png 835w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfda3ad46-300x180.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7dfda3ad46-768x460.png 768w\" sizes=\"auto, (max-width: 835px) 100vw, 835px\" \/><\/p>\n<p>I have windows already installed Windows VPN Client, Now we going to configured the same.<\/p>\n<p id=\"kvURUCC\"><img loading=\"lazy\" decoding=\"async\" width=\"423\" height=\"466\" class=\"alignnone size-full wp-image-546 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e61ad3e3d.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e61ad3e3d.png 423w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e61ad3e3d-272x300.png 272w\" sizes=\"auto, (max-width: 423px) 100vw, 423px\" \/><\/p>\n<p id=\"aPMvStA\"><img loading=\"lazy\" decoding=\"async\" width=\"634\" height=\"344\" class=\"alignnone size-full wp-image-547 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e64a02290.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e64a02290.png 634w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e64a02290-300x163.png 300w\" sizes=\"auto, (max-width: 634px) 100vw, 634px\" \/><\/p>\n<p id=\"wqdvYGS\"><img loading=\"lazy\" decoding=\"async\" width=\"446\" height=\"372\" class=\"alignnone size-full wp-image-548 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e6ce3eddc.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e6ce3eddc.png 446w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7e6ce3eddc-300x250.png 300w\" sizes=\"auto, (max-width: 446px) 100vw, 446px\" \/><\/p>\n<p>The configure we used here, before we configured in ASA, password is &#8211; bbcisco (change as per your network)<\/p>\n<p>Some tests before we establish VPN. below screen shows no connection to 100.100.100.5<\/p>\n<p id=\"qmkDZYr\"><img loading=\"lazy\" decoding=\"async\" width=\"496\" height=\"182\" class=\"alignnone size-full wp-image-557 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f9257411b.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f9257411b.png 496w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f9257411b-300x110.png 300w\" sizes=\"auto, (max-width: 496px) 100vw, 496px\" \/><\/p>\n<p id=\"SKGsmdS\"><img loading=\"lazy\" decoding=\"async\" width=\"491\" height=\"159\" class=\"alignnone size-full wp-image-558 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f970e58d3.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f970e58d3.png 491w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f970e58d3-300x97.png 300w\" sizes=\"auto, (max-width: 491px) 100vw, 491px\" \/><\/p>\n<p>Lets connect to VPN<\/p>\n<p>using<\/p>\n<p>username : bbscisoc<\/p>\n<p>password : passw0rd<\/p>\n<p id=\"DgPsZdD\"><img loading=\"lazy\" decoding=\"async\" width=\"705\" height=\"388\" class=\"alignnone size-full wp-image-550 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f7d01b0d4.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f7d01b0d4.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f7d01b0d4-300x165.png 300w\" sizes=\"auto, (max-width: 705px) 100vw, 705px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p id=\"oNEourZ\"><img loading=\"lazy\" decoding=\"async\" width=\"742\" height=\"380\" class=\"alignnone size-full wp-image-551 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f7f27398e.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f7f27398e.png 742w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f7f27398e-300x154.png 300w\" sizes=\"auto, (max-width: 742px) 100vw, 742px\" \/><\/p>\n<p>It is connected now.<\/p>\n<p id=\"lRrKGPX\"><img loading=\"lazy\" decoding=\"async\" width=\"747\" height=\"474\" class=\"alignnone size-full wp-image-552 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f820934b0.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f820934b0.png 747w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f820934b0-300x190.png 300w\" sizes=\"auto, (max-width: 747px) 100vw, 747px\" \/><\/p>\n<p>we can see some statistics.<\/p>\n<p id=\"cSprnjx\"><img loading=\"lazy\" decoding=\"async\" width=\"738\" height=\"459\" class=\"alignnone size-full wp-image-553 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f83e0e042.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f83e0e042.png 738w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f83e0e042-300x187.png 300w\" sizes=\"auto, (max-width: 738px) 100vw, 738px\" \/><\/p>\n<p>We able to access 100.100.100.0\/24 network.<\/p>\n<p>&nbsp;<\/p>\n<p id=\"yQdUeMq\"><img loading=\"lazy\" decoding=\"async\" width=\"690\" height=\"203\" class=\"alignnone size-full wp-image-554 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8a1075d8.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8a1075d8.png 690w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8a1075d8-300x88.png 300w\" sizes=\"auto, (max-width: 690px) 100vw, 690px\" \/><\/p>\n<p>We have IP 200.200.200.100\/24 as soon as we connected to remote access VPN<\/p>\n<p>Some tests :<\/p>\n<p>we able to ping Remote site Server, and traceroute is next hop.<\/p>\n<p id=\"JsbtRAT\"><img loading=\"lazy\" decoding=\"async\" width=\"494\" height=\"151\" class=\"alignnone size-full wp-image-555 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8c0dcbdb.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8c0dcbdb.png 494w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8c0dcbdb-300x92.png 300w\" sizes=\"auto, (max-width: 494px) 100vw, 494px\" \/><\/p>\n<p id=\"qvdOntr\"><img loading=\"lazy\" decoding=\"async\" width=\"565\" height=\"105\" class=\"alignnone size-full wp-image-556 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8e349c6c.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8e349c6c.png 565w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7f8e349c6c-300x56.png 300w\" sizes=\"auto, (max-width: 565px) 100vw, 565px\" \/><\/p>\n<p>We can view Remote VPN Client connections.<\/p>\n<p id=\"pgoqqAA\"><img loading=\"lazy\" decoding=\"async\" width=\"1645\" height=\"871\" class=\"alignnone size-full wp-image-559 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fa25303e2.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fa25303e2.png 1645w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fa25303e2-300x159.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fa25303e2-768x407.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fa25303e2-1024x542.png 1024w\" sizes=\"auto, (max-width: 1645px) 100vw, 1645px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p>Once you terminate the connection you can see the below logs in ASDM<\/p>\n<p>&nbsp;<\/p>\n<p id=\"WPUKkAS\"><img loading=\"lazy\" decoding=\"async\" width=\"1558\" height=\"241\" class=\"alignnone size-full wp-image-560 \" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fac776041.png\" alt=\"\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fac776041.png 1558w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fac776041-300x46.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fac776041-768x119.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2017\/09\/img_59c7fac776041-1024x158.png 1024w\" sizes=\"auto, (max-width: 1558px) 100vw, 1558px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p>Happy Labiingggggggg!<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>IPsec Remote-Access VPN Part of the CCIE Sec Journey created a Remote Access VPN setup. Physical Diagram for the LAB I have used below Version of ASAv and ASDM IP address and Physical connectivity as shown as above pictures. RAS pool of address 200.200.200.X \/24 Before proceeding further, i expect all the devices have L3 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,2,6],"tags":[],"class_list":["post-527","post","type-post","status-publish","format-standard","hentry","category-ccie-sec","category-cisco","category-security"],"_links":{"self":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/527","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=527"}],"version-history":[{"count":5,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/527\/revisions"}],"predecessor-version":[{"id":561,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/527\/revisions\/561"}],"wp:attachment":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=527"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=527"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=527"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}