Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Intermittent VPN Client issue

Hi. We're behind a cisco 1841 ADSL router. Im trying to VPN out to a customer site using the cisco vpn client.

I can do this from our 'spare' adsl line with no router on it no problem, so all my software and configs are correct on my laptop.

However, something on my router is stopping me from getting out.

Here are my access-lists and interfaces. Any ideas?

interface Dialer0

ip address our1841adsl 255.255.255.248

ip access-group 102 in

Extended IP access list 102

10 permit udp any eq domain any (381 matches)

20 permit tcp any any established (14902 matches)

30 permit tcp any host ourwebserver eq www (1 match)

40 permit tcp any host ourwebserver eq 443

50 permit tcp any host ourmailserver eq 1723

60 permit tcp any host ourmailserver eq smtp (10 matches)

70 permit tcp any host ourmailserver eq www (1 match)

80 permit tcp any host ourmailserver eq 443

90 permit gre any host ourmailserver (7823 matches)

100 permit tcp any host our1841adsl eq 1723

110 permit gre any host our1841adsl (5399 matches)

120 permit udp any any eq isakmp

130 permit udp any any eq non500-isakmp (331 matches)

140 permit esp any any

150 permit tcp any host summitelse eq ftp-data

160 permit tcp any host summitelse eq ftp

170 permit tcp any host summitelse eq www

180 permit tcp any host summitelse eq 443

190 permit tcp any host summitelse eq www

Extended IP access list 150

10 permit ip host 10.1.2.4 any

20 permit tcp host 10.1.2.5 any eq 3101

30 permit tcp 10.1.2.0 0.0.0.255 any eq 1723 (3 matches)

40 permit gre 10.1.2.0 0.0.0.255 any

50 permit tcp 10.1.2.0 0.0.0.255 any eq 3389

60 permit ip 10.1.2.0 0.0.0.255 host 81.179.43.100

70 permit tcp 10.1.2.0 0.0.0.255 any eq telnet

80 permit udp 10.1.2.0 0.0.0.255 any eq isakmp (3 matches)

90 permit udp 10.1.2.0 0.0.0.255 any eq non500-isakmp

100 permit udp 10.1.2.0 0.0.0.255 any eq 10000

110 permit esp 10.1.2.0 0.0.0.255 any

120 permit tcp host 10.1.2.8 any eq smtp

130 permit tcp 10.1.2.0 0.0.0.255 any eq 8200 (1 match)

150 permit udp 10.1.2.0 0.0.0.255 any eq 62515

160 permit tcp 10.1.2.0 0.0.0.255 any eq 10000 (1 match)

ip nat inside source list 150 interface Dialer0 overload

ip nat inside source static tcp 10.1.2.105 20 summitelse 20 extendable

ip nat inside source static tcp 10.1.2.105 21 summitelse 21 extendable

ip nat inside source static tcp 10.1.2.105 80 summitelse 80 extendable

ip nat inside source static tcp 10.1.2.106 80 summitelse 80 extendable

ip nat inside source static tcp 10.1.2.106 443 summitelse 443 extendable

ip nat inside source static tcp 10.1.2.8 80 anotherserver 80 extendable

ip nat inside source static tcp 10.1.2.8 443 anotherserver 443 extendable

ip nat inside source static tcp 10.1.2.4 25 sbs server 25 extendable

ip nat inside source static tcp 10.1.2.4 80 sbs server 80 extendable

ip nat inside source static tcp 10.1.2.4 443 sbs server 443 extendable

ip nat inside source static tcp 10.1.2.4 1723 sbs server 1723 extendable

ip nat inside source static 10.1.2.4 sbs server extendable

ip nat inside source static tcp 10.1.2.1 1723 our1841adsl 1723 extendable

134
Views
0
Helpful
0
Replies
CreatePlease to create content