06-10-2009 09:27 AM - edited 02-21-2020 03:30 AM
Hi all.
We have several remote sites, connecting to headcuarters over IPSEC vpn to a Concentrator 3560.
The concentrator have a public ip, and the internal interface is on a DMZ firewall.
We need to tunneling all remote sites traffic including internet traffic, to reach internet over the headcuarter firewall.
I try to configure on remote sites routers and access-list "any" to create the tunnel, but the VPN fails on concentrator ....
I attach a schema
¿any idea?
Thanks in advance.
06-11-2009 02:23 AM
You have to change the Access-list on both sides, did you change it on the concentrator (HQ) as well?
Regards
Farrukh
06-11-2009 02:56 AM
Thanks Farrukk.
Yes, y change the access-list, but I usa a "any , 0.0.0.0 0.0.0.0" on concentrator de vpn tunnels don't up.
¿?
06-11-2009 06:54 AM
Cam you post your config? and more details about the setup
If possible enable debugging on the VPNC and see whats going wrong.
Regards
Farrukh
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: