Sorry if this is the place but hope someone here can help me out.
Currently i have a problem with routing traffic from one network to another through a VPN. The setup is as follows:
we have 2 internal network(DMZ & Internal) and 1 outside interface. From the outside interface there is a GRE tunnel with a VPN to another network. The tunnel and vpn is up and running and i can from the router ping hosts on both sides. When i am on a pc i cant get traffic to pass through onto the other network. So far the routing entry is correct but i have been told it might be a NAT problem.
So how do i make a NAT entry that will fit in this picture. There is already nat for two network to the WWW but i also need to make one for the other network.
Hope this makes sense and someone might have an idea.
Hi .. I am not sure if I am understanding your issue .. but if you have a vpn up and running and are experincing problems accessing the other site from one of your networks then you need to check the access-list applied to your crypto map ( iPsec interesting traffic ) make sure this access-list includes the network that is not working. Also you need to check the exception nat access-list .. basically this access list allows traffic that traverses the tunnel to use thir real IP adresses instead of being NATed. This check has to be done in both ends. Finally you need to check your routing to make sure every network knows the how to reach to each other
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :