I am a total newbie when it comes to cisco and routing, so forgive me if this has been answered before.
We have a cisco 2821 router that is supporting VPN connections. Our LAN is a /22 (255.255.252.0) xxx.xxx.0 .0 xxx.xxx.1.0 xxx.xxx.2.0 xxx.xxx.3.0 subnets. I can connect through VPN and I can access my xxx.xxx.1.0 subnet with no problems. However, I cannot access the xxx.xxx.2.0 and xxx.xxx.3.0 subnets.
I don't even know where to start. I have seen similiar threads, but I need it "dumbed down" for me. Preferably solutions that I can apply through the SDM. I am terrible with the CLS.
Thank you for any help provided!! :-)
Here it is
access-list 199 permit ip 10.1.0.0 0.0.1.255 10.1.255.0 0.0.0.255
your clients are getting the address pool of 10.1.255.0 0.0.0.255
to permit access to any other network in your lan from the vpn client
access-list 199 permit ip 10.1.255.0 0.0.0.255
You will have to add the same lines that you add in the ACL 199 to the ACL 104 but with the deny action since you are using nat
access-list 104 deny ip 10.1.0.0 0.0.1.255 10.1.255.0 0.0.0.255
notice that you are using a deny and that is to tell the router to do NO NAT that traffic.
I hope it helps.. Let me know