Hi, I have a VPN system with Cisco VPN clients connecting to a Cisco 3800. All authentication is done with digital certificates and users via tacacs. The clients can connect to the system the can reach all the subnets that have primary address on a interface on the router but they cannot reach a particular subnet that has the gateway a secondary ip on the router. The client has the route in table, everything works with all the other subnets. Did anyone encoutered this problem ? Any ideea how to solve this ?