VPN issue, can't contact hosts on LAN

Unanswered Question
Apr 9th, 2010

Hi all..

For my work i've been put on a project tot manage the connections to several locations in Yemen.

The connection to the remote routers (IPsec) works well. I mean that I can contact the router via my vpn client using the yemen group. But the thing is that i simply can't reach the hosts on the inside of the remote network.

What in the config can be the problem. Is i the ACL entry?

Maybe you guys can help me out of this.

Any answer can be helpful!

--Config removed-

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Jennifer Halim Fri, 04/09/2010 - 02:26

ACL 110 that you have assigned for split tunnel ACL does not seem to exist as per your configuration.

ACL 110 should say:

access-list 110 permit ip

Also, ACL 2 that has been assigned to the NAT statement, needs to be changed to an extended ACL, as follows:

access-list 120 deny ip

access-list 120 permit ip any

ip nat inside source list 120 interface Dialer0 overload

no ip nat inside source list 2 interface Dialer0 overload

Hope that helps.


This Discussion