11-19-2007 08:13 AM - edited 03-03-2019 07:36 PM
Hi, I have a Cisco 1841 with a DSL card. It is running in VPN mode to my head office, can I stop the internet going over the VPN and just use the internet through the DSL port, or does it have to go over the VPN always for the internet?
11-20-2007 07:50 AM
You can have this location connect to the internet without going to the head office.
Posting your current config will help us determine the best approach.
11-20-2007 08:38 AM
11-20-2007 08:50 AM
First, we need to take the destination 'any' from the VPN encryption.
You have
access-list 101 permit ip 172.19.10.0 0.0.0.255 any
It should be
access-list 101 permit ip 172.19.10.0 0.0.0.255 [destination network]
Next, just configure the NAT for the network:
ip nat inside source route-map DSL interface dialer 1 overload
!
route-map DSL permit 10
match ip address INSIDE
!
!
ip access-list extended INSIDE
deny ip 172.19.10.0 0.0.0.255 [destination network]
permit ip 172.19.10.0 0.0.0.255 any
interface f0/0
ip nat inside
interface dialer1
ip nat outside
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: