I have one user who is unable to Access Remote Network resources when connected to the VPN on his home network. VPN shows connected and he is given a remote IP from the VPN Pool, but he cannot ping any IP on our network. When connected using Sprint Wi-Fi card he is able to connect and access remote network from the same laptop. Maybe there is some network overlap that I am missing.
Please see attached firewall config (zzz... being firewall public IP) and remote user route table.
I believe the issue is with the ISP. We are leveraging IPSEC on the VPN and it appears port 500 is being blocked on his end. VPN Statstics are showing he is sending but not receiving. We were told by his ISP to switch to a commercial internet account to resolve.
Yes, I believe the routing is correct, VPN Statistics is showing Secured Routes to our two internal networks (172.20.0.0 and 172.30.0.0). Tunnel Detail shows Bytes received but none Sent. I don't believe there is any network overlap either, user is given a 126.96.36.199/24 address and we assign a 172.29.151.0/24 address from the VPN Pool.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :