Hello,   have a look at the video below. As said, you can only do a few things with Packet Tracer, the below might work for you:   Packet Tracer Lab 6 - Remote Access VPN   https://www.youtube.com/watch?v=lkUq6Pl6his ... View more

Hello,   the only option available as protocol appears to be pppoe, but that is not supported in Packet Tracer. EZVPN is not supported either. What is the exact requirement for the remote access ?   Keep in mind that Packet Tracer devices are not fully featured, real IOS devices. Only a subset of the commands available in IOS are available. ... View more

Hello,   10.1.10.1 is the local (not the public) IP address to be used to access the device. I checked the manual, and for this particular model, with the 'Disable All' checkbox unchecked, you should reboot the router and all devices attached.   I think the connection between the Comcast and the SG300 should be an access port, since you are not doing any inter-Vlan routing on the Comcast. So, make it an access port in Vlan 1 on both sides.   So, to sum it up, try the following steps:   1. Make the ports connecting the SG300 and the Comcast an access port in Vlan 1 2. Assign a default route on the SG300 pointing to the Comcast (if you don't have already done that) 3. Reboot the Comcast and check if any networks have been added to the Comcast under the Advanced --> Nat tab 4. If not, add the networks manually by using the 'Add New' button (you might also want to try this step first)... ... View more

Hello,   if you add the lines in bold to the configuration of Router7, the router will function as PPTP VPN server for remote access users:   Current configuration : 1554 bytes ! version 15.1 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname B ! username vpnuser password 0 vpnpassword ! aaa new-model ! aaa authentication ppp default local ! vpdn enable ! ip cef no ipv6 cef ! license udi pid CISCO1941/K9 sn FTX15245NGO- license boot module c1900 technology-package securityk9 ! vpdn-group REMOTE-VPN accept-dialin protocol pptp virtual-template 1 ! crypto isakmp policy 10 encr aes 256 authentication pre-share group 5 ! crypto isakmp policy 11 encr aes 256 authentication pre-share group 5 ! crypto isakmp key secretkey address 1.0.0.2 crypto isakmp key secretkey1 address 3.0.0.2 ! crypto ipsec transform-set B-S esp-aes 256 esp-sha-hmac crypto ipsec transform-set B-M esp-aes 256 esp-sha-hmac ! crypto map IPSEC-MAP 10 ipsec-isakmp set peer 1.0.0.2 set pfs group5 set security-association lifetime seconds 86400 set transform-set B-S match address 100 ! crypto map IPSEC-MAP 11 ipsec-isakmp set peer 3.0.0.2 set pfs group5 set security-association lifetime seconds 86400 set transform-set B-M match address 101 ! spanning-tree mode pvst ! interface GigabitEthernet0/0 ip address 2.0.0.2 255.255.255.224 duplex auto speed auto crypto map IPSEC-MAP ! interface GigabitEthernet0/1 ip address 10.0.18.1 255.255.255.224 duplex auto speed auto ! interface Virtual-Template1 ip unnumbered GigabitEthernet0/1 peer default ip address pool VPNPOOL ppp encrypt mppe auto required ppp authentication ms-chap ms-chap-v2 ! interface Vlan1 no ip address shutdown ! ip local pool VPNPOOL 10.0.18.20 10.0.18.30 ! ip classless ip route 0.0.0.0 0.0.0.0 2.0.0.1 ! ip flow-export version 9 ! ! access-list 100 permit ip 10.0.18.0 0.0.0.31 10.1.18.0 0.0.0.31 access-list 101 permit ip 10.0.18.0 0.0.0.31 10.2.18.0 0.0.0.31 ! line con 0 ! line aux 0 ! line vty 0 4 login ! end ... View more

Hello,   the problem is most likely that the Comcast only translates (NAT) the default Vlan 1. The SG300 does not do NAT, so you will have to add all the other networks to be translated on the Comcast. What is the exact model you have ? Try and access the WebGUI for the Comcast and see if you can find anything related to Network Address Translation, and if you can add additional networks... ... View more

Hello,   post the Packet Tracer project (.pkt) file, zip it first, otherwise the system won't let you upload it. ... View more

Hello,   either that, or add the static default route on the Warmingham-Router as indicated in my last post. ... View more

Hello,   add:   ip route 0.0.0.0 0.0.0.0 Serial0/1/1   to the Warmingham-Router... ... View more

Hello,   after adding the default route to the ISP router, I can ping 145.45.5.1 and 145.45.5.100 from anywhere, including all other routers.   I am sending over the revised project file... ... View more

Hello,   the static default route will make the ISP router reachable from everywhere. What exactly is the assignment, does the ISP router have to be part of OSPF ? ... View more

Hello,   it looks like your ISP router needs a default route:   ip route 0.0.0.0 0.0.0.0 Serial0/1/0 ... View more

Hello,   post your Packet Tracer project (.pkt) file, zip it first, otherwise the system won't let you upload it... ... View more