Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN CLIENT CANNOT PING INSIDE SUBNETS

Hi ,

Hi ,

I have got a VPN client who connects to VPN PIX ( outside say 244.244.204.4 inside 10.100.1.4)

and gets an IP say 10.100.25.100 .Now this Vpn client can ping any machine on the 10.100.1.XXX .Now there are several subnets connected to an internal router .

One of them is say 10.100.11.xx .From the internal router I can ping the VPN CLIENT .But not from the Subnet 10.100.11.xxx .This router is active router among pair of HSRP Routers .I have applied the path to the VPN client to active router only .ON the VPN PIX there is this line appearing

305005: No translation group found for icmp src inside:10.100.11.80 dst outside:10.100.25.100

Any help Appreciated .

Thanks

Raj .

  • Other Security Subjects
1 REPLY
New Member

Re: VPN CLIENT CANNOT PING INSIDE SUBNETS

Try something similar to this -

access-list vpn permit ip 10.100.11.0 255.255.255.0 10.100.25.0 255.255.255.0

nat (inside) 0 access-list vpn outside

Or you may just need to enter a NAT command for the 10.100.11.0 subnet that maps to a global command passing traffic outbound. And/or a static mapping between the two subnets.

Rick

78
Views
0
Helpful
1
Replies
This widget could not be displayed.