Easy vpn server

jaguarrt1978 · ‎06-06-2005

I am trying to configure Easy VPN server on cisco 1711. When I connect to the server using cisco vpn client I am able to ping the VPN server and the workstations connected to the VPN server, but unable to map the network drives. Also somehow after connecting I cannot surf the internet anymore. I am attaching the configuration file. Any help would really be appreciated.

ehirsel · ‎06-06-2005

One item I noted is that your ipsec vpn tunnels terminate on the same 1711 interface that is used to nat the outgoing internet traffic. Since the vpn users do not terminate on a inside nat interface, their ip addresses never get nat'ed when crossing to the nat outside interface. If there is an internal proxy server, have the clients use it for the general internet connections - if that is not a viable option, then if you have more than one public ip address, then create a loopback interface with that address and terminate the tunnels on it. Make it a nat inside interface. You will need to create route maps and apply them to the outside and inside interfaces to route back to the loopback interface for traffic destined to the vpn clients.

With regards to network drive mappings, you need to specify the wins server addresses on the client group vpngroup for WINS processing to take place, unless the dns servers can handle both types.

Let me know if this is of any help.

jaguarrt1978 · ‎06-06-2005

One item I noted is that your ipsec vpn tunnels terminate on the same 1711 interface that is used to nat the outgoing internet traffic. Since the vpn users do not terminate on a inside nat interface, their ip addresses never get nat'ed when crossing to the nat outside interface....

Since I am newbie in this could you please explain this in detail. Thanks a lot.