Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > DNS problems in L2L vpn between Cisco 851 and Firewal Nokia IP220

Reply
Thread Tools

DNS problems in L2L vpn between Cisco 851 and Firewal Nokia IP220

 
 
libra2222
Guest
Posts: n/a
 
      09-20-2007
HI
I have setup a L2L VPN between Cisco 857 (ADSL modem/router) in a branch and the Nokia IP220 Firewall in main office. I am having the follwowing issues and I will appreciate your input
1) I would like the machines inside the remote office (LAN2) to connect to the main office (LAN1) for AD, but to use its own ISP gateway for Internet access.
At the moment, it seems like all traffic has been redirected through the VPN. ie - a PC in LAN 2 with DNS server pointing to reach ISP's, can't reach the Internet. Using a packet analyser, i can see that DNS requests are sent, but replies are not coming back. I figure that they might be stopped in the Nokia Firewall Gateway in the other end, to which i have limited access to check the logs.
I have also debugged ip packets at the router, and see no activity of any ACL stopping the reply packets.
The interesting parts of the Cisco configuration are as follwos:

--- NAT setup
ip nat inside source route-map NONAT interface Dialer1 overload
--- Route-map (I have read mixed posts saying that sometimes this approach does not work)
route-map NONAT permit 10
match ip address 101
----
access-list 101 remark NONAT access rule excludes IPSEC connections from NAT
access-list 101 deny ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255
access-list 101 permit ip 192.168.2.0 0.0.0.255 any

I will appreciate some help with troubleshooting this issue. I can post the rest of teh config if necesary.
Many thanks !
 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Aoatrade.com Unlocked Nokia N97,nokia n97 mini,Nokia N8,Nokia N900 chen selina C++ 0 07-06-2010 01:35 PM
Aoatrade.com Unlocked Nokia N97,nokia n97 mini,Nokia N8,Nokia N900 chen selina C++ 0 07-05-2010 06:41 AM
is an 851 to 851 ipsec tunnel possible? Zedsquared Cisco 0 02-03-2010 07:34 PM
asa 5505 + l2l vpn + cisco client vpn lesniak81 Cisco 0 01-13-2009 09:59 AM
Nokia N95 Hoodies Sunglasses Nokia N93 Nokia N70 Sony memory cardMobile Phones shopbb.com Computer Support 0 11-18-2007 04:44 PM



Advertisments