I have a home network with two 2600s and a Linksys router. I have three subnets. If a client is on the first subnet it can create a VPN tunnel (using IPSec) to my job. However when I move that client to another subnet (Over back to back T1 WAN connection) I can't create the tunnel.
I have put the client back on the first subnet (on same network as Linksys router) I can connect. Which leads to think it something over the T1 WAN. it's not a routing issue because I can ping the ip of the VPN box at my job from the subnet over the T1 WAN.
Is there anything that I am supposed to do to support IPSec over the WAN?
There can be a lot of things to check here. routes & gateways, router configuration, NAT/PAT issues. Hard to determine without running through some debugs and seing your configs. TAC is your best bet at this point.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...