Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Unable to VPN Outside to In

I just walked into this job to half way through a change over from a software firewall to the cisco box. The config on this thing is crazy. I need help!

I need to get a client VPN from outside to inside so the IT dept. can access the network hardware. then we'll add some static VPN's for other devices..

Anyway I've tried everything even the wizard on a dev box to figure out what is keeping me from accessing the network. I can establish a tunnel but can not get anywhere.

I've included the entire config as it's poor and the problem may be any place.

Thanks for any help.

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: Unable to VPN Outside to In

Hello.

It appears you have failed to NOT nat the

VPN traffic to the destined internal networks.

I'd add

access-list nat0 extended permit ip 10.125.1.0 255.255.255.0 10.0.0.0 255.0.0.0

Of course you may wish to tailor this more appropriately for the internal networks you want to access.

You should also bind the ip pool to your group-policy.

See how that goes...

Tim

2 REPLIES
New Member

Re: Unable to VPN Outside to In

Hello.

It appears you have failed to NOT nat the

VPN traffic to the destined internal networks.

I'd add

access-list nat0 extended permit ip 10.125.1.0 255.255.255.0 10.0.0.0 255.0.0.0

Of course you may wish to tailor this more appropriately for the internal networks you want to access.

You should also bind the ip pool to your group-policy.

See how that goes...

Tim

New Member

Re: Unable to VPN Outside to In

Worked, now all i need to do is clean the mess up.

94
Views
0
Helpful
2
Replies