Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
262
Views
0
Helpful
2
Replies

VPN to NATed pirvate LAN

lovedayt
Level 1
Level 1

‎08-17-2007 08:15 AM - edited ‎02-21-2020 03:13 PM

I have a pix 506e running 192.168.1.0/24 on the inside and a single public IP outside. I initially used the VPN wizard to create an IPSec VPN for the cisco client. I can log in and create the tunnel but no inside resources are available. I am even unable to receive icmp echos.

I also tried pptp but the VPN connects the tunnel and then immediately dumps it.

Exacerbating the problem is my PDM manager frequently disconnects from the pix. I am doing this remotely so a clean slate is not an option. the pix is 192.168.1.1 and is the gateway but DHCP comes from a win2k3 AD server.

Labels:
0 Helpful
2 Replies 2

Tshi M
Level 5
Level 5

‎08-17-2007 09:14 AM

do you mind posting your configuration removing things such as public ip addresses, etc..

Do you have a route for your VPN subnet? i.e. ip route 10.1.1.x 255.255.255.0 192.168.1.1 or this route might needs to be added in the win2k3 route add -p 10.1.1.x mask 255.255.255.0 192.168.1.1. I am using 10.1.1.x as the vpn subnet just as an example

0 Helpful

lovedayt
Level 1
Level 1
In response to Tshi M

‎08-17-2007 01:53 PM

I am grasping at straws with very little other training than reading the cisco docs.

here is my config with the ips changed to spare the innocent. each of the 10.10.x.x addresses correspond to a real public address. there does not appear to be a route and the acls look wierd.

Preview file
6 KB
0 Helpful
Customers Also Viewed These Support Documents