Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
0
Helpful
1
Replies

Combining remote access and site to site VPN

bobbycornetto
Level 1
Level 1

‎10-11-2010 01:40 PM - edited ‎02-21-2020 04:54 PM

Hi Everyone,

I have a small problem with my VPN configuration on two Cisco 2811s. We just got rid of an expensive point to point private WAN link between our two company sites in favor of a site to site VPN. We also provide remote access VPN into the main office with static routes to allow access to hosts on the branch office network as well. When I added the site to site VPN to the configuration, the only thing that "broke" was the ability for remote access VPN clients to connect to hosts in the branch office. Any thoughts on how to get this going? I wondered if it might have to do with something like the "same-security-traffic" intra-interface command that you use on the ASA for a config like this? "debug ip packet <ACL>" with the ACL defining the address pool for remote access clients only sees traffic when I directly access the router from a remote access client.

Thanks in advance for any help.

Labels:
0 Helpful
1 Reply 1

manish arora
Level 6
Level 6

‎10-11-2010 04:37 PM

Appears to me that you applied new cypto map on the outside interface of the router which replaced your

remote vpn crypto map and you lost the ability to remote vpn clients. Please

post configuration for the site which lost remote vpn client for further look in.

Thanks

Manish

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents