Tunneling all traffic including Internet access

Unanswered Question
Jun 10th, 2009

Hi all.

We have several remote sites, connecting to headcuarters over IPSEC vpn to a Concentrator 3560.

The concentrator have a public ip, and the internal interface is on a DMZ firewall.

We need to tunneling all remote sites traffic including internet traffic, to reach internet over the headcuarter firewall.

I try to configure on remote sites routers and access-list "any" to create the tunnel, but the VPN fails on concentrator ....

I attach a schema

¿any idea?

Thanks in advance.

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Farrukh Haroon Thu, 06/11/2009 - 02:23

You have to change the Access-list on both sides, did you change it on the concentrator (HQ) as well?

Regards

Farrukh

vgaraboa Thu, 06/11/2009 - 02:56

Thanks Farrukk.

Yes, y change the access-list, but I usa a "any , 0.0.0.0 0.0.0.0" on concentrator de vpn tunnels don't up.

¿?

Farrukh Haroon Thu, 06/11/2009 - 06:54

Cam you post your config? and more details about the setup

If possible enable debugging on the VPNC and see whats going wrong.

Regards

Farrukh

Actions

This Discussion