Weird situation, please help!

Unanswered Question
Oct 27th, 2008

Hey there!

Ok here is my situation....

I set a tunnel from my location to a remote location. However, when the remote location logs into the VPN, they are able to hit the machine, however the machine cant send anything back through the tunnel. I enabled NAT-T, but still no luck. I really need help and have no idea of what to do next. PLEASE HELP!!!

our remote location (which is logged into the VPN) can ping our site, but from our site, it cant ping back. THerefore no traffic will be coming back out. ANy ideas?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
John Blakley Mon, 10/27/2008 - 06:59

Disable NAT for the subnet that's going across the tunnel.

If you have NAT enabled, it'll try to go out your public interface. If you have a NAT acl, deny your site natting to the other side:

Your side: Theirs:

deny ip

permit ip any

The last line allows your side to NAT anywhere else.




This Discussion