Solved: How do i get the traffic to

sprocket10 · ‎03-07-2014

Hi

I am having an issue i just cant get my head around, probably simple but i cant see the answer.

We have a 887VAW router that connects via vpn to our HQ. From a site/user perspective everything works fine.

Wireless and hard wire works for internet and data to HQ.

The issue I am having is if i telnet to the router, I cant ping HQ from the CLI, but if i use ping and specify the routers ip as the source, the ping is successful.

------

Router#ping 172.16.1.67 source 172.16.109.1

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 172.16.1.67, timeout is 2 seconds:

Packet sent with a source address of 172.16.109.1

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 60/63/64 ms

-------

Router#ping 172.16.1.67

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 172.16.1.67, timeout is 2 seconds:

.....

Success rate is 0 percent (0/5)

Pedro Lereno · ‎03-07-2014

Hi,

By default, if you do not mention the source ip, the traffic goes with source ip of the outside interface.

This outside ip address is not encrypted by the vpn (interesting traffic acl).

Regards,

Pedro Lereno

View solution in original post

Pedro Lereno · ‎03-07-2014

Hi,

By default, if you do not mention the source ip, the traffic goes with source ip of the outside interface.

This outside ip address is not encrypted by the vpn (interesting traffic acl).

Regards,

Pedro Lereno

sprocket10 · ‎03-10-2014

How do i get the traffic to go via the VPN, or set the default source. I am trying to configure websence on the router and to contact a server in HQ, but as you say it is trying to access the server via the WAN not VPN

887 router issue - data via VPN