I have a client set up and connects great to the VPN. Once my session is established I can ping the pc itself and the VPN public/private interfaces but nothing else. Nothing on the Network or out on the internet. I can't even ping the gateway or tunneling gateway.
How are you assigning ip address to the clients. If you are using a Pool of ip addresses, does your internal router has a route back to the VPN3000 for this pool of addresses.
Is the VPN3000 configured for Split tunneling. If you want the users to go to the internet while connected to the VPN3000, you need to enable split tunneling or you can tunnel everything and route the packets to the internet through a different device.
No the router doesn't have a route back VPN 3000, how do I do that. How do you do split tunneling. What I hate about this 3005, is that it is either Menu driven or Gui, no command line. It makes it that much harder to trouble shoot.
If you are assigning a pool of addresses 10.1.1.1-10.1.1.254, we need to make sure that your internal network is aware of this range and routes the packet back to the VPN3000 for this 10.1.1.x/24 subnet.
If you are using a Cisco Router, you can do:
ip route 10.1.1.0 255.255.255.0
Regarding split tunneling:
1. You need to create a network list which includes the subnets that you want the users to have access to.
2. And assign this network list to the group.
You can also refer the below URLs for detail info:
I want to thank you for your help. I did end up fixing the problem myself I guess I should have been a little more patient with my self and waited, not wasting your time. The problem was sort of easy, I wouldn't have thought it would have caused as much problems but it did. I am not sure if I should feel idiotic about it. I had the vpn working last thursday, but it was that one finite thing that I overlooked.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :