Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
899
Views
3
Helpful
2
Replies

Defaut Gateway over VPN ?

Didier1966
Level 1
Level 1

‎03-01-2011 02:20 PM

Hello,

Sorry for this newbee stupid question , but when I am on the other site of a VPN line and I do IPCONFIG , the DEFAULT GATEWAY is empty.

I have this in the ROUTER , but I can not add DEFAULT-GATEWAY 192.168.10.1

crypto isakmp client configuration group 3000client

key cisco123

dns 192.168.10.1

domain dri.eu

pool VPNpool

acl 150 

save-password

!

THIS IS ALL WHAT MY IOS ALLOWS :

ROUTER1841(config-isakmp-group)#?

ISAKMP group policy config commands:

  access-restrict               Restrict clients in this group to an interface

  acl                           Specify split tunneling inclusion access-list

                                number

  auto-update                   Configure auto-upgrade

  backup-gateway                Specify backup gateway

  banner                        Specify mode config banner

  browser-proxy                 Configure browser-proxy

  configuration                 Push configuration to the client

  crypto                        Client group crypto aaa attribute list

  dhcp                          Configure DHCP parameters

  dns                           Specify DNS Addresses

  domain                        Set default domain name to send to client

  exit                          Exit from ISAKMP client group policy

                                configuration mode

  firewall                      Enforce group firewall feature

  group-lock                    Enforce group lock feature

  include-local-lan             Enable Local LAN Access with no split tunnel

  key                           pre-shared key/IKE password

  max-logins                    Set maximum simultaneous logins for users in

                                this group

  max-users                     Set maximum number of users for this group

  netmask                       netmask used by the client for local

                                connectivity

  no                            Negate a command or set its defaults

  pfs                           The client should propose PFS

  pool                          Set name of address pool

  save-password                 Allows remote client to save XAUTH password

  smartcard-removal-disconnect  Enables smartcard-removal-disconnect

  split-dns                     DNS name to append for resolution

  wins                          Specify WINS Addresses

Any advice is welcome
Best Regards,
Didier

Labels:
0 Helpful
2 Replies 2

Todd Pula
Level 7
Level 7

‎03-01-2011 02:39 PM

You do not configure a default gateway as part of the VPN configuration.  To direct traffic into the virtual adapter of the VPN client, more specific static routes are inejcted into the routing table of the connected PC.  If a split tunneling ACL is not explicitly configured, a default route will be injected with a more preferrable metric directing all packets for any unknown destinations by way of the VPN software.  With a split ACL configured, individual routes will be injected to direct traffic for specific destination networks by way of the VPN software.

Todd

Didier1966
Level 1
Level 1
In response to Todd Pula

‎03-01-2011 11:15 PM

Hello Todd,

Thank You for your prompt reply

To be more precise , I have some folders that I would like to use when I am abroad , it works even with the names of the folder (I have add the folder names in the LMHOST for PC and HOST for MAC)

The only thing that does not want to work is my BACKUP TIME MACHINE on my NAS with my MAC , when I am abroad , when I am home everything work fine.

So I was thinking "maybe he need to know a default gateway ?"

Any idea is welcome

Best Regards,

Didier.

0 Helpful
Customers Also Viewed These Support Documents