Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
408
Views
0
Helpful
1
Replies

EZVPN - IP POOL

rameezsardar
Level 1
Level 1

‎03-05-2009 05:39 PM

Hi,

I configured ezvpn on router to provide connectivity to remote user. I defined pool range 172.16.100.1-20 and enable split tunneling. Remote site (from where users are dialing) is having two local networks there i.e. 192.168.1.0/24 (users network), 172.16.1.0/24 (server farm) Now i am facing problem when user connect vpn, he can ping central IPs and its192.168.1.0/24 network but unable to access 172.16.1.0/24 network there. when i see users PC routing table (route print) after connecting VPN, all traffic for 172.16.0.0 255.255.0.0 is going through VPN.

Central Site (10.x.x.x)---------------ezvpn (172.16.100.1-20)-------------------RemoteSite (users network 192.168.1.0/24, server network 172.16.1.0/24)

If i changes pool range from 172.16.100.1-20 (class B ) to 192.168.100.1-20 (class C), it start working fine

Any way to solve this issue..

Best Regards

Labels:
0 Helpful
1 Reply 1

ggilbert
Cisco Employee
Cisco Employee

‎03-06-2009 06:42 AM

Hello,

On the router, you cant set a network mask for the pool - unfortunately. So, it will use the default mask according to the pool range you have set.

Your analysis is correct. The option would be to change the pool to a different network.

Hope this helps.

Cheers,

Gilbert

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents