Cisco Support
English
Feedback Help
Cisco Support Community
Register
cancel
turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
HAFIZ AHMED
HAFIZ AHMED
Community Member
‎01-14-2007 10:04 PM
‎01-14-2007 10:04 PM

Remote Access VPN routing problem

We have configured Remote Access VPN in Cisco 2600 router. But the problem is user can easily authenticate & connected to VPN device but they cant ping the internal file server or workstations.

For your convenience here I attached the sh tech & diagram of the present scenario.

I need your assistance to resolve this problem

Regards,

Ruben

Labels:
0 Helpful
Reply
4 REPLIES
Daniel Voicu
Daniel Voicu Silver
Silver
‎01-15-2007 01:57 AM
‎01-15-2007 01:57 AM

Re: Remote Access VPN routing problem

Hi Ruben,

Try the following:

1. remove "aaa authorization network groupauthor local" then give it a try

2. remove "ip cef" then try again

If still doesn't work, try to capture the console messages on the Router and post it.

Please rate if this helped.

Regards,

Daniel

0 Helpful
Reply
michicano
michicano
Community Member
‎01-15-2007 06:33 AM
‎01-15-2007 06:33 AM

Re: Remote Access VPN routing problem

Ruben,

In this doc - I don't see your access-list for the VPN traffic. It is possible that you are not including the correct traffic for this tunnel so that may be why your users can't PING the internal file server or workstations.

Carlos

0 Helpful
Reply
dominic.caron
dominic.caron Silver
Silver
‎01-15-2007 08:15 AM
‎01-15-2007 08:15 AM

Re: Remote Access VPN routing problem

Hi !

If you try to ping from the connected client the internal router interface, does it work ?

If it doesnt work, do a debug ip icmp to see if the router is receiving the packet.

post results....

0 Helpful
Reply
HAFIZ AHMED
HAFIZ AHMED
Community Member
‎01-16-2007 03:11 AM
‎01-16-2007 03:11 AM

Re: Remote Access VPN routing problem

Thanks for your reply.

I have applied the folowing command but still reamin the same prob

# access-list 101 permit ip 192.168.16.0 0.0.0.255 14.1.1.0 0.0.0.255

# crypto isakmp client configuration group tvclgr

# acl 101

Regards,

Hafiz Ahmed

0 Helpful
Reply
Latest Documents
Snort IPS on ISR, ISRv and CSR - Step-By-Step Configuration
Created by Kureli Sankar on 04-19-2018 11:25 AM
0
0
0
0
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin... view more
Upgrade Chassis Manager (FXOS)
Created by Jeet Kumar on 02-23-2018 02:51 AM
2
15
2
15
    Login to the FXOS chassis manager. Direct your browser to https://hostname/, and log-in using the user-name and password.     Go to Help > About and check the current version:    Check the current version availa... view more
ASA 5506-X with ipv6 no access to internet
Created by Klaxel on 02-08-2018 01:25 AM
3
5
3
5
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6. In Syslog I also se... view more
All Documents
209
Views
0
Helpful
4
Replies
CreatePlease to create content
Discussion
Blog
Document
Video
Popular Blogs
AnyConnect Certificate Based Authentication.
Created by Marvin Ruiz on 08-27-2012 05:20 PM
36
70
36
70
BLOG (No Title)
Created by athukral on 06-14-2011 04:23 AM
15
35
15
35
Wireless Hacking
Created by Anim Saxena on 01-24-2013 07:56 AM
2
20
2
20
All Blogs