cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
360
Views
0
Helpful
2
Replies

vpn rounting issue

firestartest
Level 1
Level 1

Hi

I have a set up that requires a vpn client to terminate a session on a router.

ip route 0.0.0.0 0.0.0.0 192.168.100.2

Network A is 192.168.5.0 and the client sits on network B on 131.6.100.0. The 2 routers that connect the networks have dual ethernet interfaces. and have 192.168.100.1 and 192.168.100.2 as the point to point link ethernet1/0

The client connects and obtains an IP address from the pool. When I try to connect or ping a device on the 192.168.5.0 network I get no reply.

If I add a default route on the router at Network A

ip route 0.0.0.0 0.0.0.0 192.168.100.2

that points to network router B everything works.

Why do I need this default route or have I configured this the wrong way?

Heres router A config.

ip local pool users 192.168.200.1 192.168.200.254

ip classless

ip route 131.6.100.0 255.255.255.0 192.168.100.2

aaa new-model

aaa authorization network groupauthor local

aaa session-id common

no ip domain lookup

crypto isakmp policy 10

encr 3des

authentication pre-share

group 2

!

crypto isakmp client configuration group users

key cisco

dns 192.168.5.100

wins 192.168.5.100

domain test.co.uk

pool users

!

crypto isakmp profile vpnclient

match identity group users

isakmp authorization list groupauthor

client configuration address respond

!

!

crypto ipsec transform-set mytrans esp-3des esp-sha-hmac

!

crypto dynamic-map dynmap 5

set transform-set mytrans

set isakmp-profile vpnclient

crypto map mymap 10 ipsec-isakmp dynamic dynmap

interface FastEthernet0/0

ip address 192.168.5.20 255.255.255.0

speed auto

interface Ethernet1/0

ip address 192.168.50.1 255.255.255.252

crypto map mymap

2 Replies 2

ehirsel
Level 6
Level 6