ipsec and default route issue

syjeon · ‎01-26-2008

Hi.

I configured the ipsec on ASA and connected vpn through ipsec protocol.

I could connect to our local network but

I can't use internet, So I looked up my pc routing table, It is like below

===========================================================================

Active Routes:

Network Destination Netmask Gateway Interface Metric

0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.4 1

0.0.0.0 0.0.0.0 192.168.100.1 192.168.100.201 1

127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1

169.254.0.0 255.255.0.0 192.168.0.4 192.168.0.4 30

169.254.0.0 255.255.0.0 192.168.100.1 192.168.100.201 20

192.168.0.0 255.255.255.0 192.168.0.4 192.168.0.4 20

192.168.0.0 255.255.255.0 192.168.100.1 192.168.100.201 20

192.168.0.1 255.255.255.255 192.168.0.4 192.168.0.4 1

192.168.0.4 255.255.255.255 127.0.0.1 127.0.0.1 20

192.168.0.255 255.255.255.255 192.168.0.4 192.168.0.4 20

192.168.100.0 255.255.255.0 192.168.100.201 192.168.100.201 20

192.168.100.201 255.255.255.255 127.0.0.1 127.0.0.1 20

192.168.100.255 255.255.255.255 192.168.100.201 192.168.100.201 20

211.189.156.85 255.255.255.255 192.168.0.1 192.168.0.4 1

224.0.0.0 240.0.0.0 192.168.0.4 192.168.0.4 20

224.0.0.0 240.0.0.0 192.168.100.201 192.168.100.201 20

255.255.255.255 255.255.255.255 192.168.0.4 3 1

255.255.255.255 255.255.255.255 192.168.0.4 4 1

255.255.255.255 255.255.255.255 192.168.0.4 192.168.0.4 1

255.255.255.255 255.255.255.255 192.168.100.201 192.168.100.201 1

Default Gateway: 192.168.100.1

===========================================================================

Persistent Routes:

In normal situation, My default gateway is 192.168.0.1, But When I connected with vpn, the default changed 192.168.100.1, 192.168.100.1 is ASA's inside ip address.

Is it a normal operation?

rlacap · ‎02-22-2008

syjeon

If your using an IPSEC vpn client make sure you have split tunneling configured or vpn on a stick configuration.

It would also help to see your firewall configs.

rlacap