Forum Discussion

Johnnyx_304575's avatar
Apr 19, 2018

VPN using wrong IP to connect to server

I have configured a network access VPN. The VPN is working. I can connect to the servers but when using the VPN I am connecting from a Self IP that is configured on the APM but has nothing to do with the VPN. Is there a way so the IP connecting to the distant server is the IP the user gets from the lease pool or at least the IP of the Virtual Server?

 

3 Replies

  • Think I figured it out. Under Access --> Connectivity/VPN --> Network Access (VPN) --> Network Access Lists under the Network Settings tab I need to change the SNAT Pool from Auto Map to None. I have tried this in the past and the VPN stopped working. The problem for me is the Vlan for the lease pool has not been added to the virtual server that hosts the F5 Big IP virtual appliance. Once the Vlan is tested I'll update and let everyone know.

     

  • That did not help. Still not able to connect from the VPN with SNAT pool configured to None. The VPN only works with Auto Map configured. Any other ideas on how to get the VPN working without Auto Map so the IP the client gets from the lease pool can be used to connect to the distant server?

     

  • Sounds like a routing issue then. Are you able to do a packet capture to see the VPN traffic leaving using the APM DHCP address....I'm guessing then that you are not seeing any return traffic. You'll need to follow the path through to see what routes will need to be enabled (again, am guessing) on downstream network devices to allow the return traffic.