Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
201
Views
0
Helpful
1
Replies

Weird situation, please help!

accesshollywood2
Level 1
Level 1

‎10-27-2008 06:51 AM - edited ‎03-06-2019 02:09 AM

Hey there!

Ok here is my situation....

I set a tunnel from my location to a remote location. However, when the remote location logs into the VPN, they are able to hit the machine, however the machine cant send anything back through the tunnel. I enabled NAT-T, but still no luck. I really need help and have no idea of what to do next. PLEASE HELP!!!

our remote location (which is logged into the VPN) can ping our site, but from our site, it cant ping back. THerefore no traffic will be coming back out. ANy ideas?

Labels:
0 Helpful
1 Reply 1

John Blakley
VIP Alumni
VIP Alumni

‎10-27-2008 06:59 AM

Disable NAT for the subnet that's going across the tunnel.

If you have NAT enabled, it'll try to go out your public interface. If you have a NAT acl, deny your site natting to the other side:

Your side: 10.1.1.0 Theirs: 10.20.5.0

deny ip 10.1.1.0 0.0.0.255 10.20.5.0 0.0.0.255

permit ip 10.1.1.0 0.0.0.255 any

The last line allows your side to NAT anywhere else.

HTH

John

HTH, John *** Please rate all useful posts ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card