IOS IPSec VPN - Forwarding out non-default routed interface

Unanswered Question
Dec 5th, 2007

Hi all,

I have a setup with 2 ISP's, and a crypto map applied to the interface of each ISP. The default route points out ISP1. I would like to connect a client VPN to the non-default routed interface. My question is how does the router know which interface to send the packets with private source/destination IP's of the other end? I know there is an IP local pool statement given to the VPN group, but when is that taken into consideration?

I've never seen a route statement created for the IP's in the local pool, so can someone explain the logic of the router?

I have this problem too.
1 vote
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
tstanik Wed, 12/12/2007 - 14:28

For sending the packets to the private source/destination IP the router will normally use the default gateway. However certain traffic can be classified and can be made to go through some other routed interface. The IP local pool has no relation to the routing decision made by the router.


This Discussion