Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > vpn clients cannot access internet

Reply
Thread Tools

vpn clients cannot access internet

 
 
John Schleigh
Guest
Posts: n/a
 
      10-07-2005
I have set up a pix 506e (ver. 6.3) for locally authenticated mppe vpn
connections
(http://www.cisco.com/en/US/products/...0143a5d.shtml).

When connected, the vpn clients lose their ability to connect to any outside
networks. They can connect to other hosts on their network and hosts on my
network. They are properly resolving outside addresses, but cannot ping
them.

I am sure there must be a simple solution to this. Any help is appreciated.

Here are the commands I used to set up the pix for vpn connections:

access-list 101 permit ip 192.168.1.0 255.255.255.0 192.168.2.0
255.255.255.0
ip local pool vpnpool 192.168.2.1-192.168.2.50
nat (inside) 0 access-list 101
sysopt connection permit-pptp
vpdn group 1 accept dialin pptp
vpdn group 1 ppp authentication pap
vpdn group 1 ppp authentication chap
vpdn group 1 ppp authentication mschap
vpdn group 1 ppp encryption mppe auto
vpdn group 1 client configuration address local vpnpool
vpdn group 1 client configuration dns 192.168.1.4
vpdn group 1 pptp echo 60
vpdn group 1 client authentication local
vpdn username ***** password *********
vpdn enable outside

--
John R Schleigh IV
IT Manager
Network America, Inc.
(757) 486-5694
___________________
It shall be unlawful for any suspicious person to be within the
municipality.
-- Local ordinance, Euclid Ohio

 
Reply With Quote
 
 
 
 
Igor Mamuzic
Guest
Posts: n/a
 
      10-07-2005
You can use your VPN GW as Internet GW for your VPN clients... I do this for
my PPTP users... For IPSec Cisco clients I simply use split tunneling...

B.R.
Igor


"John Schleigh" <(E-Mail Removed)> wrote in message
news:fQA1f.39$(E-Mail Removed)...
>I have set up a pix 506e (ver. 6.3) for locally authenticated mppe vpn
> connections
> (http://www.cisco.com/en/US/products/...0143a5d.shtml).
>
> When connected, the vpn clients lose their ability to connect to any
> outside
> networks. They can connect to other hosts on their network and hosts on
> my
> network. They are properly resolving outside addresses, but cannot ping
> them.
>
> I am sure there must be a simple solution to this. Any help is
> appreciated.
>
> Here are the commands I used to set up the pix for vpn connections:
>
> access-list 101 permit ip 192.168.1.0 255.255.255.0 192.168.2.0
> 255.255.255.0
> ip local pool vpnpool 192.168.2.1-192.168.2.50
> nat (inside) 0 access-list 101
> sysopt connection permit-pptp
> vpdn group 1 accept dialin pptp
> vpdn group 1 ppp authentication pap
> vpdn group 1 ppp authentication chap
> vpdn group 1 ppp authentication mschap
> vpdn group 1 ppp encryption mppe auto
> vpdn group 1 client configuration address local vpnpool
> vpdn group 1 client configuration dns 192.168.1.4
> vpdn group 1 pptp echo 60
> vpdn group 1 client authentication local
> vpdn username ***** password *********
> vpdn enable outside
>
> --
> John R Schleigh IV
> IT Manager
> Network America, Inc.
> (757) 486-5694
> ___________________
> It shall be unlawful for any suspicious person to be within the
> municipality.
> -- Local ordinance, Euclid Ohio
>



 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
easy vpn IOS - vpn clients cannot acces another network behind nat teodor General Computer Support 0 08-20-2009 11:51 AM
Internet access for vpn clients Pseto Cisco 1 03-04-2007 09:36 PM
site-to-site VPN tunnel with remote VPN clients David Mitchell Cisco 0 06-21-2006 03:07 PM
VPN Clients Internet Access Stan Cisco 1 11-21-2005 07:26 AM
PIX : provide Internet access to VPN clients without split tunnel free Cisco 2 12-17-2004 06:06 PM



Advertisments