[c-nsp] IOS EzVPN Client NAT Issue
Shakeel Ahmad
shakeelahmad at gmail.com
Sat Nov 4 15:30:44 EST 2006
Guys,
Following is the scenario:
EZVPN-SERVER----->3745(EZVPNCLIENT)-----RADIO LINK -----> HOST
80.x.x.x--->202.x.x.x/10.1.10.x---->10.73.1.0/24
A 3745 is connecting to a PIX 515 using IOS EzVPN client. The internal
interface on 3745 have 10.1.10.x IP , and anothe facility is connected via
Radio link to 3745 having IP addresses in 10.73.1.0/24
Now when i connect successfully to EzVPN Server , only
10.1.10.0/24hosts/routers are able to reach the VPN subnet , while
10.73.1.0/24 never is able to use VPN.
All routing/revert routing is fine, have duoble checked --- seems like only
connected subnet can use VPN Subnet. Any comments/help would be helpfull
here....thanks..
Configuration is following:
crypto ipsec client ezvpn ez
connect manual
group trgvpn key xxxx
local-address Serial0/3/0:1
mode client
peer x.x.x.x
xauth userid mode interactive
interface f0/0
crypto ipsec client ezvpn ez inside
int Serial0/3/0:1
crypto ipsec client ezvpn ez outside
More information about the cisco-nsp
mailing list