Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Users might experience few discrepancies in Search results. We are working on this on our side. We apologize for the inconvenience it may have caused.
New Member

ACL doesn't work with Client 3.x

i am useing a cisco 2621 router to be a easy vpn server

and now planning to let net to encryption between client and server

so i have the acl like

access-list 180 permit

and the assign to the crypto isakmp client configuration group

then i dial the vpn client to server, and the network is appear in the statistics window, but it seem that there's no any encrypted transfer between the client and the server , and i notice that there is no a yellow little lock left to the network entry,

Anybody meet the the same problem?

and how can i solve it?

Thanks and Regrads,

Wells Wei

Cisco Employee

Re: ACL doesn't work with Client 3.x

So is the inside network right? What is the ip address pool you give to your client? The acl to enable split tunnelling (which falls under

the group) is of the format:


or you could also use any keyword instead of the vpn client pool.


You would also want to enable the log viewer (filter set to high) on the client to

see what you are getting when you have tried to connect to the router. Router debugs and config you could compare from:

New Member

Re: ACL doesn't work with Client 3.x

Thank you for ur answer...

i have the client pool

and i have try to make my acl like access 180 permit ip

but i still doesn't work!

the little key still not appear left to the ip subnet range in the vpn client

and my client version is 3.5.2A

u know what happen ? thank you!

CreatePlease to create content