Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
402
Views
0
Helpful
3
Replies

VPN Connects, No dataflow

scotian_gold2900
Level 1
Level 1

‎08-11-2008 08:46 AM - edited ‎03-06-2019 12:43 AM

With the following:

interface Loopback0

ip address 192.168.199.1 255.255.255.0

interface Vlan1

description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$

ip address 10.0.0.254 255.255.255.0

interface Virtual-Template1 type tunnel

tunnel mode ipsec ipv4

tunnel protection ipsec profile SDM_Profile1

- I can connect via VPN Client, but unable to ping a computer or use RDP to it (as an example).

- Do I need a static route or NAT between the VLAN and VPN?

- no firewall enabled yet

Labels:
0 Helpful
3 Replies 3

Richard Burts
Hall of Fame
Hall of Fame

‎08-11-2008 08:54 AM

Chris

I would not think that there was any need for static routes or NAT between the VLAN and VPN.

What address does the VPN client get assigned when it connects?

Perhaps posting the config would allow us to understand better what the issue is.

HTH

Rick

HTH

Rick
0 Helpful

scotian_gold2900
Level 1
Level 1
In response to Richard Burts

‎08-11-2008 10:15 AM

Rick,

Actually, just reset to factory and applied a duplicate configuration this time without the firewall.

I was able to connect and ping computer I had hooked up and was able to RDP in.

Mind you, as soon as I use the firewall wizard in the SDM (Simple or Advanced) - I can still connect and do everything via VPN - but am unable to surf webpages externally.

Is there away the connected VPN users can

access Windows Files - I figured that NetBIOS names would not work - so tried \\10.0.0.15\sharename and \\10.0.0.15\c$ and got nowhere.

0 Helpful

scotian_gold2900
Level 1
Level 1
In response to scotian_gold2900

‎08-12-2008 10:06 AM

Thanks again Rick for the assistance.

I have the VPN working now and can access using \\ip address\share name.

I am having problems with firewall in general. According to Firewall in SDM - ACL 101 is set to drop. I think this is the problem. Not sure exactly which option to choose. Permit Firewall or Permit ACL to resolve it.

Attached are two files

a) Config /w Firewall Enabled

b) A PDF of my original configuration. In this, I've looked at every line and tried to determine what it does. If you have time - and don't mind a little education session. Would you mind looking through them and providing feeback.

Red is no clue what the command does

Blue - How I understand the command.

Preview file
30 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card