Prev: HW & SW VPN client -- need routing workaround
Next: Cisco 878
From: Tilman Schmidt on 8 Apr 2008 04:27
lwpowers(a)gmail.com schrieb:
> I have a Cisco 1700 router with dual WIC/T1's
>
> LAN users are assigned NAT IP addresses from the Cisco 1700 via DHCP
> from 10.0.0.100 to 10.0.0.200.
>
> 10.0.0.2 - 10.0.0.15 are 1:1 configured to our 16 internet routable IP
> addresses.
>
> Users who receive an IP address via DHCP have all desired
> functionality, including surfing, email, etc... however they cannot
> establish a VPN.
>
> The same users can statically assign a 1:1 IP address (i.e. 10.0.0.15)
> and establish a VPN without any issue.
>
> Im stuck. Anyone know why this is happening?

It's not too clear what you or your users are trying to do, but as a
wild guess, you may have hit the fact that standard IPSec does not work
across NAT. If so, you'll want to use the "NAT traversal" option.

HTH
T.

--
Please excuse my bad English/German/French/Greek/Cantonese/Klingon/...
 | 
Pages: 1
Prev: HW & SW VPN client -- need routing workaround
Next: Cisco 878