Solved

Cisco VPN

Posted on 2004-10-04
4
236 Views
Last Modified: 2010-04-17
I am able to have users VPN into our system but they can not browse the internet once they have VPN'd in.  They can do everything else but they can not access the internet, any ideas?
0
Comment
Question by:gtimmons
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 250 total points
ID: 12219171
What is your VPN endpoint? A PIX? VPN 3000 series concentrator?
What version VPN client?
Either way, the answer lies in "split-tunneling"
VPN 3000 series:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_example09186a008015f324.shtml

PIX:
http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_user_guide_chapter09186a00801aed89.html
0
 

Author Comment

by:gtimmons
ID: 12219488
Pix 515 is our firewall
0
 

Author Comment

by:gtimmons
ID: 12219668
do I put the IP address of the internal network, 172.16.1.1, in for this?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 12220103
Yes, use something like this:

access-list split-tunnel permit ip 172.16.1.0 255.255.255.0 <VPN IP subnet> <mask>
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Cisco RV042 router is a popular small network interfacing device that is often used as an internet gateway. Network administrators need to get at the management interface to make settings, change passwords, etc. This access is generally done usi…
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question