We have obtained a dedicated link between 2 of our offices and I purchased 2 1811 routers to make the connection. All is working fine for the remote office to access our main office, however the remote office needs to access the internet directly and they cannot access anything beyond our main office. The WAN link is connected using the WAN ports, the remote office is on the VLAN port using IP set of 10.0.8.x. The main office is on the network of 10.0.0.x. The WAN ports are on the IP set of 10.0.1.x. From the remote office I can ping the firewall and the traceroute to the firewall works fine. When I traceroute to the internet from the remote office it stops on the WAN port of the main office router. I created the default route for 0.0.0.0 to the firewall on the router in the main office and all security and NAT is disabled on both routers. Any ideas would be appreciated...
It is guess based on what we have been told so far that the issue is most likely an issue on the firewall. There are a couple of things that the firewall needs besides having a route to 10.0.8.0. In particular the firewall needs to have address translation logic that includes that subnet. Can you tell us if the firewall is translating that subnet and has appropriate access rules to allow that subnet out and responses to return?
Can you provide with the trace to any internet site? also as suggested by Mr. chuckwilson, please check for the default route at remote office.