Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
552
Views
0
Helpful
6
Replies

How to let 2 clients (connected to VPNc) communicatie to eachother

Go to solution
gaston.bougie
Level 1
Level 1

‎12-04-2006 06:26 AM - edited ‎03-09-2019 04:59 PM

We have a 'good' working vpn connection for the company for several time.

But when you have to use direct communication from one connected client to another, it doesn't work.

Is there a simple manner to get this working?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
spremkumar
Level 9
Level 9

‎12-04-2006 10:12 PM

Hi Gaston

Can you tell me about the security device which you are using over there as your VPN Server ?

regds

View solution in original post

0 Helpful
6 Replies 6

Go to solution
spremkumar
Level 9
Level 9

‎12-04-2006 10:12 PM

Hi Gaston

Can you tell me about the security device which you are using over there as your VPN Server ?

regds

0 Helpful

Go to solution
gaston.bougie
Level 1
Level 1
In response to spremkumar

‎12-05-2006 02:23 AM

Hi Spremkumar,

thank you for asking.

The cisco devices we use for vpn are:

VPN3000 concentrators

The clients connected to the vpn concentrator can perfectly connect to our internal network.

But the clients can't communicate to each other for direct connections.

I'm not sure what to configure in the VPN concentrator to get this working.

0 Helpful

Go to solution
J.altami01
Level 1
Level 1
In response to gaston.bougie

‎12-05-2006 12:04 PM

Hi Gaston there is something called Reverse Route Injection (RRI)and is used for comunciate sites or host VPN clients, here is the link in Cisco Web Site

http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2284/products_configuration_example09186a0080094a6b.shtml

I hope it helps

Please rate if is posible

0 Helpful

Go to solution
gaston.bougie
Level 1
Level 1
In response to J.altami01

‎12-07-2006 07:37 AM

Hi J.altami01,

thank you for your reaction.

I saw also this RRI called:

"Client reverse route injection"

But when I enable this, it doesn't make any difference.

0 Helpful

Go to solution
gaston.bougie
Level 1
Level 1
In response to gaston.bougie

‎12-08-2006 04:57 AM

I'm going to ask Cisco for Help, when I know the sollution I will post it. Any help from the forum is helpfull.

Regards,

Gaston Bougie

0 Helpful

Go to solution
gaston.bougie
Level 1
Level 1
In response to gaston.bougie

‎12-08-2006 07:49 AM

The sollution for me was a wrong IP address in the tunnel-default-gateway.

I've removed this with entering 0.0.0.0 and it works now.

Also I've found out that the tunnel default gateway can not be the same as a interface address of the concentrator. I had one interface disabled with IP address 0.0.0.0. This disabled interface prevented me from entering 0.0.0.0 as tunnel-default-gateway.

So I had to put an fictive IP address first on that disabled interface.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents