Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Router in HSRP group doesn't create reverse route for VPN tunnel

Hi,

I've configured 2 871's with HSRP on both interfaces (internal and external). There is a crypto map on the external interface which accepts VPN connections from a Cisco VPN client.

Because I'm using the VPN client (and hence will need to use dynamic addresses), I need reverse routes so that my internal hosts can send traffic back to the clients.

Unfortunately with my config, no routes are being created - does anyone know of a workaround, or and IOS version where reverse routes + HSRP is supported?

I've read something about vrf's but don't really understand how they work, and whether they are applicable to my situation...

Any help would be greatly appreciated.

Cheers,

Mike

p.s. The second router config is the same except for ip addresses and standby priorities.

1 REPLY
New Member

Re: Router in HSRP group doesn't create reverse route for VPN tu

Hi,

From "crypto dynamic-map DYNMAP_1" Configuration, remove"match address CiscoVPNClientGroup_ACL" and check during the client connected to EASY VPN Server. You should find the static host route on your active router's routing table.

Thanks,

Mustafa

181
Views
0
Helpful
1
Replies