12-02-2018 06:21 AM - edited 02-21-2020 09:31 PM
I have conifigured a IPSEC tunnel between a remote site and the corporate office. I configured the IP helper on the interfaces so the devices will contact the corporate DHCP server....so nothing is natt'ed. The tunnel comes up just fine. I can access the loopback from the corporate office but nothing else. None of the clients are picking up an IP address. The routing looks good but when I perform a trace from the far end to the head end it doesn't look like the trace is leaving the far end's interface. I suspect its an acl issue but my acl's look good. Any ideas?
Solved! Go to Solution.
12-03-2018 04:44 AM
- You need to allow multicast over VPN too, check this link :
https://www.draytek.com/en/faq/faq-vpn/vpn.others/how-to-use-dhcp-relay-over-an-ipsec-tunnel/
M.
12-03-2018 04:44 AM
- You need to allow multicast over VPN too, check this link :
https://www.draytek.com/en/faq/faq-vpn/vpn.others/how-to-use-dhcp-relay-over-an-ipsec-tunnel/
M.
12-03-2018 07:07 PM
Thanks for the reply. I can't ping anything on the corporate network. I can't even ping the gateway of the tunnel. So I don't think this is a multicast issue. My route map is pointing to the gateway of the tunnel, and I've applied that statement to the VLAN's interfaces.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: