×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Remote Access VPN users unable to communicate with each other

Unanswered Question
Sep 1st, 2014
User Badges:

Hi,

 

We have configured Remote Access VPN on Cisco IOS router. Users are able to access the inside resources but cant communicate to each other. Any suggestions on the issue?

 

Regards

Saif

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marius Gunnerud Mon, 09/01/2014 - 03:05
User Badges:
  • Red, 2250 points or more
  • Cisco Designated VIP,

    2017 Firewalling

What type of RA VPN have you set up? (AnyConnect, IPsec VPN, Easy VPN)

--

Please remember to select a correct answer and rate helpful posts

Richard Burts Mon, 09/01/2014 - 17:14
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Try adding this to the config and see if the behavior changes

same-security-traffic permit intra-interface

and you might also try its companion command

same-security-traffic permit inter-interface

 

HTH

 

Rick

 

Richard Burts Tue, 09/02/2014 - 04:16
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

I obviously did not read the original post carefully enough. Thank you for pointing out the difference in platform.

 

HTH

 

Rick

Walter Astori Tue, 09/02/2014 - 05:52
User Badges:

You must insert the inside host in the access-list crypto and in the access-list nonat (nat(INSIDE) 0)

 

Marius Gunnerud Tue, 09/02/2014 - 06:08
User Badges:
  • Red, 2250 points or more
  • Cisco Designated VIP,

    2017 Firewalling

I have already mentioned this in one of my posts, and NAT 0 is an ASA function we are talking IOS here (ie. routers)

Marius Gunnerud Tue, 09/02/2014 - 02:39
User Badges:
  • Red, 2250 points or more
  • Cisco Designated VIP,

    2017 Firewalling

Have you excluded the VPN traffic from being NATed when traffic is going between clients?

Please post a full sanitised configuration of the router so we can check it for configuration issues.

--

Please remember to select a correct answer and rate helpful posts

Actions

This Discussion