12-02-2018 06:21 AM - edited 02-21-2020 09:31 PM
I have conifigured a IPSEC tunnel between a remote site and the corporate office. I configured the IP helper on the interfaces so the devices will contact the corporate DHCP server....so nothing is natt'ed. The tunnel comes up just fine. I can access the loopback from the corporate office but nothing else. None of the clients are picking up an IP address. The routing looks good but when I perform a trace from the far end to the head end it doesn't look like the trace is leaving the far end's interface. I suspect its an acl issue but my acl's look good. Any ideas?
Solved! Go to Solution.
12-03-2018 04:44 AM
- You need to allow multicast over VPN too, check this link :
https://www.draytek.com/en/faq/faq-vpn/vpn.others/how-to-use-dhcp-relay-over-an-ipsec-tunnel/
M.
12-03-2018 04:44 AM
- You need to allow multicast over VPN too, check this link :
https://www.draytek.com/en/faq/faq-vpn/vpn.others/how-to-use-dhcp-relay-over-an-ipsec-tunnel/
M.
12-03-2018 07:07 PM
Thanks for the reply. I can't ping anything on the corporate network. I can't even ping the gateway of the tunnel. So I don't think this is a multicast issue. My route map is pointing to the gateway of the tunnel, and I've applied that statement to the VLAN's interfaces.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide