VPN Remote Access

A customer just purchase VPN licensed for their CP NG R55.  I have setup VPN Remote Access to allow SecurRemote clients access over the internet.  I am able to establish VPN connection with SecurRemote over internet, however I'm not able to ping any internal IP addresses once connected with SecurRemote.  The Smartview Tracker log shows logon and key install succesful.  Also, I have verify the rule for RemoteAccess has "any" for destination and services in Rule base.   ANy reason why I can't ping internal IP address?
hotrod_952Asked:
Who is Participating?
 
hotrod_952Connect With a Mentor Author Commented:
I figure out the issue.  This particular customer's internal network ip address 192.168.*.* is the same as my home network.  Because SecureRemote doesn't allow you to setup Office Mode on the FW Gateway you must make sure that the home network isn't the same as the customer's internal network.  If so, then the packet doesn't know how to route out to the external gateway.  
0
 
bignewfCommented:
Hello hotrod 952

your config would be helpful, but check your config for the following:

sysopt permit vpn (or ipsec, depending on IOS version)
check your NAT0 statements allowing the ip addresses or ip ranges from this remote site to your internal lan ip ranges
0
 
hotrod_952Author Commented:
This is for Remote Access for SecuRemote over the internet, not VPN tunneling.
0
 
bignewfCommented:
Do your internal routers have routes for your vpn clients to reach the internal lan, and do your vpn clients have routes to your internal networks?

have you run a "route print"  command at the command prompt?
0
All Courses

From novice to tech pro — start learning today.