Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
411
Views
0
Helpful
2
Replies

VPN 3005 Concentrator - IP assignment issue

Go to solution
nicademuskgd
Level 1
Level 1

‎10-26-2006 10:35 AM - edited ‎02-21-2020 02:41 PM

I have a strange issue with the VPN Concentrator 3005. I have the Private interface configured with 192.168.3.3/24 as the ip address. For any users I either assign an ip address from the same network 192.168.3.105/24 (for example) or use a ip address pool (192.168.3.100 - 192.168.3.150) the connection will fail and the concentrator will state that it cannot assign an ip address to the client.

However, if I configure the address pool or client user to a different subnet it works and the user get's connected. For example, 192.168.2.105/24. I have the back end hitting a switch and don't really want to have to add a router to talk between subnets.

Am I missing something?

Any help is appreciated!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ajagadee
Cisco Employee
Cisco Employee

‎10-26-2006 07:22 PM

Alan,

It is recommended that you assign a different pool of IP Addresses for the VPN clients than your internal network.

Eventhough it is not recommended, You should be able to assign an IP Address Pool which is part of the same internal network and this should work. The only thing you have to be aware of is that this range of IP addresses assigned to the clients should not be used on the internal network

Can you post the logs from the VPN3000 when its not able to assign an IP Address to the VPN Client.

Let me know if it helps.

Regards,

Arul

** Please rate all helpful posts **

View solution in original post

0 Helpful
2 Replies 2

Go to solution
ajagadee
Cisco Employee
Cisco Employee

‎10-26-2006 07:22 PM

Alan,

It is recommended that you assign a different pool of IP Addresses for the VPN clients than your internal network.

Eventhough it is not recommended, You should be able to assign an IP Address Pool which is part of the same internal network and this should work. The only thing you have to be aware of is that this range of IP addresses assigned to the clients should not be used on the internal network

Can you post the logs from the VPN3000 when its not able to assign an IP Address to the VPN Client.

Let me know if it helps.

Regards,

Arul

** Please rate all helpful posts **

0 Helpful

Go to solution
nicademuskgd
Level 1
Level 1
In response to ajagadee

‎10-27-2006 10:36 AM

I was able to get the ip addressing fixed by changing the private address and the pool to a new subnet. For some reason this works. As you stated this is not going to my internal network, but to a DMZ which is filtered by a Pix Firewall.

Thanks for your help though.

Alan

0 Helpful
Customers Also Viewed These Support Documents