Hi
I have a set up that requires a vpn client to terminate a session on a router.
ip route 0.0.0.0 0.0.0.0 192.168.100.2
Network A is 192.168.5.0 and the client sits on network B on 131.6.100.0. The 2 routers that connect the networks have dual ethernet interfaces. and have 192.168.100.1 and 192.168.100.2 as the point to point link ethernet1/0
The client connects and obtains an IP address from the pool. When I try to connect or ping a device on the 192.168.5.0 network I get no reply.
If I add a default route on the router at Network A
ip route 0.0.0.0 0.0.0.0 192.168.100.2
that points to network router B everything works.
Why do I need this default route or have I configured this the wrong way?
Heres router A config.
ip local pool users 192.168.200.1 192.168.200.254
ip classless
ip route 131.6.100.0 255.255.255.0 192.168.100.2
aaa new-model
aaa authorization network groupauthor local
aaa session-id common
no ip domain lookup
crypto isakmp policy 10
encr 3des
authentication pre-share
group 2
!
crypto isakmp client configuration group users
key cisco
dns 192.168.5.100
wins 192.168.5.100
domain test.co.uk
pool users
!
crypto isakmp profile vpnclient
match identity group users
isakmp authorization list groupauthor
client configuration address respond
!
!
crypto ipsec transform-set mytrans esp-3des esp-sha-hmac
!
crypto dynamic-map dynmap 5
set transform-set mytrans
set isakmp-profile vpnclient
crypto map mymap 10 ipsec-isakmp dynamic dynmap
interface FastEthernet0/0
ip address 192.168.5.20 255.255.255.0
speed auto
interface Ethernet1/0
ip address 192.168.50.1 255.255.255.252
crypto map mymap