Question : Problem: Cisco 2811 VPN

I'm trying to implement a VPN using a spare 2811. I've followed the commands from the following Cisco configuration guide (http://www.cisco.com/en/US/customer/products/sw/secursw/ps2308/products_configuration_example09186a00801c4246.shtml) however I can't seem to "get" to anything once connected. I have verified that they 2811 itself can access the entire network and I can connect via the VPN client from an outside connection getting the correct IP address from the range I configured however I can't get anywhere....no internet, nothing pings, no outlook connection, etc from the connected client.

I know it has to be something simple but I'm just not seeing it.

Thanks

Answer : Problem: Cisco 2811 VPN

Add reverse-route under your dynamic map config

crypto dynamic-map dynmap 10
set transform-set myset
reverse-route

This will inject a route into the routing table which will point to the other side of the tunnel. If you want to use split tunneling you'll need to add an acl with the subnet you want to allow access and add it to your group vpn config. without split tunneling your remote host will route all traffic through the vpn tunnel.

I hope this helps
IM

Random Solutions

Problem: Using Cisco 3560\3750 SFP port for Tape Library

Problem: wireless usb sick.

Problem: Replaced motherboard/keyboard problems

Problem: HP digital sender scanner

Problem: WTF's up with my iSCSI network config ???

Problem: HP 2510 Scan Wirelessly

Problem: Is there such thing as "RAID Ready" Hard drive?

Problem: "0 software updates found" for April 2009 even though Microsoft released the updates two days ago

Problem: Insufficient online or nearline media is available to start job

Problem: Routing between 2 NICs on the Windows 2003 Server R2