Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1596
Views
0
Helpful
3
Replies

rip over l2tp ipsec tunnel asa5505

Go to solution
etxnreg
Level 1
Level 1

‎09-25-2011 01:30 AM - edited ‎02-21-2020 05:37 PM

Hi,

Trying to setup rip over a l2tp tunnel (ipsec).

In the other end I have a windows machine that using the rip listener.

Can't get it work.

Should it work?

Have any some one any ideas how I should do the config?

//Niklas

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to etxnreg

‎09-26-2011 05:56 AM

Niklas,

Well I would look for a solution on windows side.

Checking  few discussions I can see that we can forward classless routes (249) via DHCP to windows clients:

http://support.microsoft.com/kb/121005

The ASA will need "intercept-dhcp" configured to properly support it.

Or use pure IPsec client and split-tunneling functionality ;-)

Marcin

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎09-26-2011 03:05 AM

Niklas,

To start thinking about getting this to work you'd have to use virtual interfaces, which ASA does not support.

What is it that you're trying to achieve? Some sort of split tunneling?

Marcin

0 Helpful

Go to solution
etxnreg
Level 1
Level 1
In response to Marcin Latosiewicz

‎09-26-2011 03:33 AM

Hi,

I trying to avoid to have the GW over the tunnel. I.e the PC client should be able to use Internet except for some specific routes.

//Niklas

0 Helpful

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to etxnreg

‎09-26-2011 05:56 AM

Niklas,

Well I would look for a solution on windows side.

Checking  few discussions I can see that we can forward classless routes (249) via DHCP to windows clients:

http://support.microsoft.com/kb/121005

The ASA will need "intercept-dhcp" configured to properly support it.

Or use pure IPsec client and split-tunneling functionality ;-)

Marcin

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents