Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Unable to access local Network using VPN Client

Hi

I have Cisco 1841 Router and I am trying to access Local network from VPN client throught 1841 router.

I can establish VPN tunnel upto router but i am not able to access internal.

Network. I have attached config file.

Please support me.

2 REPLIES
Cisco Employee

Re: Unable to access local Network using VPN Client

Hi,

The below ACL Entries to deny NAT for VPN Traffic is incorrect.

ip access-list extended sdm_fastethernet0/1_in

remark SDM_ACL Category=3

permit ip 172.16.0.0 0.0.255.255 172.16.0.0 0.0.255.255

permit ip any any

You need to bypass NAT for VPN Traffic. So, your configuration should look like:

ip access-list extended sdm_fastethernet0/1_in

remark SDM_ACL Category=3

deny ip 172.16.0.0 0.0.255.255 172.16.0.0 0.0.255.255

permit ip any any

You can also be more specific when you define acl. For example, in the below configuration, you are denying NAT only to the Pool of IP Addresses (172.16.3.x/24):

ip access-list extended sdm_fastethernet0/1_in

remark SDM_ACL Category=3

deny ip 172.16.0.0 0.0.255.255 172.16.3.0 0.0.0.255

permit ip any any

Regards,

Arul

** Please rate all helpful posts **

New Member

Re: Unable to access local Network using VPN Client

Hi,

Have you tried "add route" command in the system that you are connecting before you connect through VPN client?

The format is as under:-

route add mask gateway

Suppose if you like to access your LAN 10.10.10.0/24 and the gateway is 10.10.10.1, you should

route add 10.10.10.0 mask 255.255.255.0 10.10.10.1

Try it and let me know.

J. Jaya Prakash

421
Views
0
Helpful
2
Replies