Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

877 site to site VPN not working

I?ve set up a site to site VPN between my 2 x 877?s (one at home and one at work) by using the wizard. I can ping and telnet to the opposing WAN IP?s and the tracert works fine.

However I can?t see anything on either LAN and the tracert to the opposing LAN goes via the Internet and not the VPN tunnel.

Is this is case of the VPN GUI wizard works 90% and I need to go into the command line?

Any help appreciated, thanks

1 REPLY
New Member

Re: 877 site to site VPN not working

I just ran into the same problem and hope this can help. I had to add nonat access list and apply them to the NAT statement:

access-list Atlanta permit ip 192.168.1.0 255.255.255.0 10.0.1.0 255.255.255.0

access-list Atlanta permit ip 10.2.2.0 255.255.255.0 10.0.1.0 255.255.255.0

access-list nonat permit ip 192.168.1.0 255.255.255.0 10.0.1.0 255.255.255.0

access-list nonat permit ip 10.2.2.0 255.255.255.0 10.0.1.0 255.255.255.0

nat (inside) 0 access-list nonat

Without this statement the traffic is NATed and will not pass traffic correctly.

134
Views
0
Helpful
1
Replies