851 router issues

Unanswered Question
Apr 7th, 2009

Hello all

I'm having a problem -- I'm very unfamilar with cisco products .....

when users try to VPN into the network they connect with the cisco client no problem - but are unable to establish a remote desktop connection with any of the computers on the network.

Something I thought that was kind of weird is the VPN adapter assigns an IP address that has the same default gateway

for example the adapter would get an IP 10.10.10.141 and the default gateway is the same address 10.10.10.141  --

I have attached the router config - it's bascially all greek to me

my boss is goingto kill me if i don't figure this out soon -- any help would be greatly appreciated

Thanks   

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Maulik Shah Tue, 04/07/2009 - 10:46

This is a bit of a complex issue and you are best off opening a case with the Cisco TAC so they can go through various options:

http://tools.cisco.com/ServiceRequestTool/create/launch.do

One thing that stands out is you have a static NAT translation for the remote desktop port (3389):

ip nat inside source static tcp 10.10.10.150 3389 interface FastEthernet4 3389

One solution was to bypass this - this is an example so please look at the right IP addresses for your network:

interface Loopback1
ip address 10.255.255.1 255.255.255.252
!
ip access-list extended bypassnat
permit ip 192.168.1.0 0.0.0.255 192.168.111.0 0.0.0.255
!
route-map bypassstatics permit 10
match ip address bypassnat
set ip next-hop 10.255.255.2
!
interface BVI1
ip policy route-map bypassstatics

Actions

This Discussion