Sometimes even wizards can be complicated
Here is how to use the Cisco ASDM VPN wizard to configure VPN access on a Cisco ASA Appliance.
This is assuming that basic configuration and internet access has been previously configured and is operational.
- Launch ASDM and log into the ASA you wish to create VPN access to.
-
Click on Wizards, VPN Wizard and select the type of VPN you will like to create
-
Click on the VPN Type if it is not available as part of the menu options
-
Choose the VPN client type
-
Enter Pre-Share key and name of tunnel group
-
Select where the user database is located.
-
Use this opportunity to add users into the User Database.
-
Select the IP Address Pool for the remote access users.
- If you have not previously created the IP Address Pool, Click on New to do so now.
- Enter a name for the IP Address pool along with the starting and ending IP Address and the subnet mask.
-
Click OK
-
After creating or selecting the IP Address Pool, click on Next to proceed with the configuration.
- Enter DNS and WINS Servers along with a domain name if applicable.
-
Click on Next.
- Select the interface facing the internet
- Create a “No NAT” group – normally your LAN subnet range.
- Enable “Split Tunneling ” so users can use their local internet connection to access the internet. If not, it will use the internet access of this ASA you are creating the VPN on.
- Select Diffie-Hellman Group 2 – security
-
Select Next to proceed.
-
Verify ALL parameters and select Finish.
-
If you have your ASDM set to display all commands prior to submitting to the ASA, click on Send to post the configuration to the ASA
