Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
389
Views
0
Helpful
1
Replies

reach remote subnet after remote access vpn is established

erwee1973
Level 1
Level 1

‎10-29-2013 02:43 AM - edited ‎02-21-2020 07:17 PM

Hello,

With a customer I have added a (voice) vlan to his network, which is reachable one hop further than the (vpn) gateway, i.e. via a L3 switch. The (vpn) gateway, an 1841 router has a route to the voice lan and from the internal network we can reach the telephony server via the L3 switch. However, via vpn this is not working. I have made a drawing of it, please see attached.

The 1841 has this configured:

crypto isakmp client configuration group blablabla

key blabladiebla

dns 192.168.169.1

domain customerlan.local

pool vpnpool

acl split-acl

include-local-lan

Note, the vlan 20 is not configured on the 1841, it only has a route to vlan 20, via the L3 switch. How can I configure the vpn so that remote users can also reach the voice vlan?

With kind regards,

Ralph Willemsen

Arnhem, Netherlands

Labels:
Preview file
84 KB
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎10-29-2013 03:13 AM

Hi,

Seems you use Split Tunnel mode VPN Client connection and have defined the network to be tunneled with the ACL "split-acl".

So I would presume that at the very least you would need to add the new LAN network to that ACL. You probably also have a NAT0 configuration in some ACL related to the NAT configuration to which you would need to add a rule for this new network also.

- Jouni

0 Helpful
Customers Also Viewed These Support Documents