Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
146
Views
0
Helpful
2
Replies
Highlighted
ALTARRCBANK
ALTARRCBANK Beginner
Beginner
‎10-07-2014 04:14 AM
‎10-07-2014 04:14 AM

cisco 881, nat and tunnel

Hello!
I ask your advices! 
I have Cisco 881, which is connected to the Internet. 
There is a VPN-tunnel on it to a host. 
command "Ping" from 881 to this host is working. But from the PC behind the cisco is not going.
I see the Internet, but not the host.

 

That is my config:

version 15.2
!
interface Tunnel0
description --=VPN=--
ip address 10.0.0.11 255.255.255.252
tunnel source FastEthernet4
tunnel mode ipsec ipv4
tunnel destination 123.345.67.89
!
interface FastEthernet0
switchport access vlan 2
no ip address
!
interface FastEthernet4
description WAN
ip address 12.12.12.20 255.255.255.248
duplex auto
speed auto
ip nat outside
!
interface Vlan2
ip address 192.168.0.3 255.255.255.0
ip nat inside
ip virtual-reassembly in
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip nat inside source list NAT interface FastEthernet4 overload
ip route 0.0.0.0 0.0.0.0 12.12.12.2
ip route 192.168.100.0 255.255.255.0 10.0.0.10
!
ip access-list extended NAT
permit ip 12.12.12.0 0.0.0.255 any
!

Thanks beforehands!

Everyone's tags (4)
0 Helpful
Reply
2 REPLIES 2
Jody Lemoine
Jody Lemoine Rising star
Rising star
‎10-08-2014 07:43 AM
‎10-08-2014 07:43 AM

Everything looks good here,

Everything looks good here, but the symptoms sound like the remote end is missing a return route for traffic. You should have something like this on the other router:

ip route 192.168.0.0 255.255.255.0 10.0.0.11

Can you verify that this route is present?

0 Helpful
Reply
michael o'nan
michael o'nan Enthusiast
Enthusiast
‎10-08-2014 10:15 AM
‎10-08-2014 10:15 AM

Does your tunnel show up up

Does your tunnel show up up on show ip interface brief?

0 Helpful
Reply
Latest Contents
Questions about GRE an VPN
Created by sir_ulrick on 11-19-2019 12:01 AM
0
0
0
0
Hi, I have different questions about tunnels management.  1) Imagine that you have 2 router (A,B) with a GRE Tunnel, but inside you have also 2 different routers o firewall with a vpn connection (image1 attached).  Which would be the n... view more
Syslog Collector for Switches and Routers and ASA
Created by Oleg Volkov on 11-18-2019 09:39 AM
0
5
0
5
Hello!I make syslogcollector + RESTAPI for collect syslog messages.It have next iterested features:1. Can recognise header from Cisco/Moxa and more devices and write it in dedicated field2. Have API for integrated with other tools3. Work with Mongodb4. We... view more
Cisco Digital Network Architecture Center Modules (Design M...
Created by Mohamed Alhenawy on 11-16-2019 01:42 AM
0
0
0
0
Cisco Digital Network Architecture Center Modules (Design Module)Part.3In this article, we are going to talk about the Cisco Digital Network Architecture Center design Module.Cisco DNA Center gives us the flexibility and scalability to configure mult... view more
Cisco 2509-RJ terminal server freezes during startup
Created by hugosilva624511431 on 11-13-2019 08:57 AM
1
0
1
0
Cisco 2509-RJ freezes during start-up I bought some Cisco 2509-RJ terminal server to work on my labs and was working fine. Today I turned it on and half way through starting up it seems to freeze. I can only find one instance of this happing to ... view more
Cisco Digital Network Architecture Center Modules (Design M...
Created by Mohamed Alhenawy on 11-10-2019 10:24 AM
0
0
0
0
Cisco Digital Network Architecture Center Modules(Design Module)Part.2In this article, we are going to talk about the Cisco Digital Network Architecture Center design Module. Cisco DNA Center gives us the flexibility and availability to con... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad
August's Community Spotlight Awards