11-19-2007 08:13 AM - edited 03-03-2019 07:36 PM
Hi, I have a Cisco 1841 with a DSL card. It is running in VPN mode to my head office, can I stop the internet going over the VPN and just use the internet through the DSL port, or does it have to go over the VPN always for the internet?
11-20-2007 07:50 AM
You can have this location connect to the internet without going to the head office.
Posting your current config will help us determine the best approach.
11-20-2007 08:38 AM
11-20-2007 08:50 AM
First, we need to take the destination 'any' from the VPN encryption.
You have
access-list 101 permit ip 172.19.10.0 0.0.0.255 any
It should be
access-list 101 permit ip 172.19.10.0 0.0.0.255 [destination network]
Next, just configure the NAT for the network:
ip nat inside source route-map DSL interface dialer 1 overload
!
route-map DSL permit 10
match ip address INSIDE
!
!
ip access-list extended INSIDE
deny ip 172.19.10.0 0.0.0.255 [destination network]
permit ip 172.19.10.0 0.0.0.255 any
interface f0/0
ip nat inside
interface dialer1
ip nat outside
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide