Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

How to enable remote workers to use main office internet connection

Hi all,

i just configured our new 1802 as our internet firewall and easy VPN Server and everthing works well. The only Problem is, that connected VPN Clients cannot access the internet. It is a companys policy, that every traffic from the remote users should be encrypted and send to the central side, so split tunneling isn?t an option.

I added the SDM_Pool IPs of the Remote Workers to the NAT ACL and for some reasons the ACL is used by some packets that my "IBM Sametime" generates, and this traffic can be seen in ip nat translation. But the destination in this packets is a local ip network (172.16.17.x) so that should bei a packet that is not NATed.

My question is, what happens to encrypted packets after they are decrypted in the esayVPN Server (what are the dest an source ip ) and how can i configure the router to NAT the packets to the external IFs-IP, because it isn?t incoming traffic on the internal if, which is configured as ip nat inside.

Thanks for any suggestions.

Matthias

1 ACCEPTED SOLUTION

Accepted Solutions
Green

Re: How to enable remote workers to use main office internet con

2 REPLIES
Green

Re: How to enable remote workers to use main office internet con

New Member

Re: How to enable remote workers to use main office internet con

Sometimes it helps to search just for the right keywords... Everything is documented on cisco.com but only the experts know where to find it :-)

THX a lot for this very quick solution

Matthias

107
Views
10
Helpful
2
Replies
CreatePlease login to create content