Did you tried to deactivate the dhcp server functionality on the router, give an ip address of vlan 2 to the router on the LAN side and give the default route on the switch to lan ip of the router:
ip route 0.0.0.0 0.0.0.0 192.168.20.1 //...
Here an example:
Suppose a DMVPN in Phase 1 or 2 (without nhrp redirect and shortcut).
Put the following on the hub:
router ospf 1 default-information originate always
And on the spoke R5:
access-list 1 permit 0.0.0.0 router ospf 1 distribute-lis...
I do not see any misconfiguration on your config. Please, make sure that your inside hosts have route to the remote access clients 192.168.99.1-126 and is not blocked by any acl.
For the windows with vpn-client in some situations we manage...
Are you trying with a windows 7/8/10 pc? Cisco does not support Cisco vpn client anymore, for Windows you will need ssl vpn or l2tp-ipsec vpn.
I had the same symptoms with Windows 8, only traffic in one direction.
If you want to check t...
Hi, On the ISE you need to configure the policies (maybe with Active Directory integration or ldap) and the access rules. This article may be useful to configure the network for authentication:https://supportforums.cisco.com/document/124301/8021x-usi...