cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

ANNOUNCEMENTS

  • New Firmware Available for the RV340 Series Router Family! posted Apr 30, 2019
This includes the RV340, RV340W, RV345, and RV345P. To learn more and get the latest Firmware version click here

  • Important Update: Cisco RV340 Series and Cisco AnyConnect Secure Mobility Client posted Nov 10, 2018
The RV340 Series supports Remote Tunnel Termination of the best-selling and easy to use Cisco AnyConnect Secure Mobility Client... read more
247
Views
0
Helpful
4
Replies
Highlighted
Beginner

RV340 Site-to-Site full tunnel

Hello,

I have configured a Site-to-Site VPN connection between two sites. The topology looks like in the diagram below, but the RV340 router is used at the main office. There are also different addresses and subnets.
4936-1-v0

It works, both subnets are connected with each other.

The problem is, I would also like to allow all traffic from the remote site through the tunnel, so I can give it (limited) access to the internet on the main office router (RV340).
How can I achieve that? I do not have access to the remote site router (and I do not know what device it is), but I am allowed to specify 1 IP ACL entry, like this:

permit ip A B C D

 

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions
Beginner

Re: RV340 Site-to-Site full tunnel

Turns out, the main site was configured incorrectly. All I had to do is to set "Local IP Type" in "Local Group Setup" section to "Any" for it to work.

4 REPLIES 4
Cisco Employee

Re: RV340 Site-to-Site full tunnel

Hi ,

 

Thank you for writing to Support Forum.

 

Please elaborate the issue a bit more, that what kind of traffic you want to allow and at which site. If there is something blocked at Main Site, you will need the access to the Main Site or you could check with the Network Administrator of the main site, to get that traffic allowed.

 

Also you could reach our front line team any time, and open a Service request for the issue.

 

 

 

Beginner

Re: RV340 Site-to-Site full tunnel

The main site is the one I have full control of and the RV340 is used as a gateway and VPN.

Currently, the remote site does not have access to the Internet. I would like to tunnel all traffic at the remote site through the VPN, so I can control (at the main site side) what IP's/webpages the remote site is allowed to access.

The only thing I can do on remote site side is to add 1 ACL entry ("permit ip ..." command).

Beginner

Re: RV340 Site-to-Site full tunnel

Will

permit ip 0.0.0.0 255.255.255.255 MAIN_SITE_WAN_IP 0.0.0.0

on remote site side solve the problem?

Beginner

Re: RV340 Site-to-Site full tunnel

Turns out, the main site was configured incorrectly. All I had to do is to set "Local IP Type" in "Local Group Setup" section to "Any" for it to work.