Actually..these commands are

saifuddin.miyaji · ‎09-01-2014

Hi,

We have configured Remote Access VPN on Cisco IOS router. Users are able to access the inside resources but cant communicate to each other. Any suggestions on the issue?

Regards

Saif

Marius Gunnerud · ‎09-01-2014

What type of RA VPN have you set up? (AnyConnect, IPsec VPN, Easy VPN)

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

saifuddin.miyaji · ‎09-01-2014

IPSec Remote Access VPN

Richard Burts · ‎09-01-2014

Try adding this to the config and see if the behavior changes

same-security-traffic permit intra-interface

and you might also try its companion command

same-security-traffic permit inter-interface

HTH

Rick

HTH

Rick

saifuddin.miyaji · ‎09-02-2014

Actually..these commands are for ASA. We are discussing the IOS VPN.

Richard Burts · ‎09-02-2014

I obviously did not read the original post carefully enough. Thank you for pointing out the difference in platform.

HTH

Rick

HTH

Rick

Walter Astori · ‎09-02-2014

You must insert the inside host in the access-list crypto and in the access-list nonat (nat(INSIDE) 0)

Marius Gunnerud · ‎09-02-2014

I have already mentioned this in one of my posts, and NAT 0 is an ASA function we are talking IOS here (ie. routers)

--
Please remember to select a correct answer and rate helpful posts

Marius Gunnerud · ‎09-02-2014

Have you excluded the VPN traffic from being NATed when traffic is going between clients?

Please post a full sanitised configuration of the router so we can check it for configuration issues.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

Remote Access VPN users unable to communicate with each other