Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access to only one subnet on local network using Lan-to-Lan VPN

We have a lan to lan VPN tunnel set up with a remote office using a VPN 3000 concentrator and a PIX firewall.

Internal network let's say is 111.111.xxx.xxx and the remote network is 111.111.123.xxx. The problem is the remote network can only access one subnet the .0 subnet on the local network. They can get to any 111.111.0.xxx address but if they try 111.111.5.xxx (or any other) it doesn't work.

The lan-to-lan settings on the concentrator look correct to me:

Local Network

IP: 111.111.0.0

WM: 0.0.255.255

Remote Network

111.111.123.0

0.0.0.255

Any ideas would be a great help and thanks in advance.

2 REPLIES
Cisco Employee

Re: Access to only one subnet on local network using Lan-to-Lan

You have to create a network list on the 3000 incorporating both 111.111.0.xxx and 111.111.5.xxx as the local net and the remote net stays the same.

On the PIX you have to have two lines, one with a source of 111.111.123.0 and destination of 111.111.0.xxx, the second would have the same source but a different destination of 111.111.5.xxx.

New Member

Re: Access to only one subnet on local network using Lan-to-Lan

Perfect! Thanks!

124
Views
0
Helpful
2
Replies
CreatePlease to create content