Nat via ezvpn client.

Unanswered Question
Sep 28th, 2010


My head is currently broken trying to figure out how to route all non ezvpn traffic to a nat'ed interface on a client (rather than the server).

Here is a diagram of the topography.

Client Machine ( subnet)


Cisco 877 (running ezvpn server on static ip)




Cisco 871 (running ezvpn client and nat on dynamic ip) (subnet



I have no issues with bridging the networks and flow between them, however I need to be able to route all non local/remote traffic though the 871. However the issue is that the 871 has a dynamic ip hence I cant run the ezvpn server there, whih obviously would make things easy.

So how can I make 'internet traffic' 'go' via the 871?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jitendriya Athavale Tue, 09/28/2010 - 08:35

i am not sure if i understand your requiremtn correct

do you want Client Machine's in network to be able to access internet through the 871 router???

so path would be client machine 877 ===vpn=== 871 ----------- internet

i am pretty sure i havent understood it correctly??? please clarify

Marcin Latosiewicz Tue, 09/28/2010 - 09:24


I think the idea is to make ALL traffic to the internet go via EZVPN  CLIENT to the internet, rather then your typical EZVPN CLIENT connecting to internet.

I see this as a possibilitty:


- dynamic routing with default information originate on client

- floating static on ezvpn server

Could potentially work ... not a nice solution ;-)



This Discussion