Cisco VPN's

Posted on 2011-03-21
Last Modified: 2012-06-27
I have a cisco 2801 router with the security pack on it. I have VPN set up so the my outside users can VPN into our office. The problem I'm having is that I have a consultant who is trying to VPN into his office while on our network. He is running a Cisco Concentrator on his end. The VPN can't make a connection. It works fine from outside our network just not inside my network. Here is the ACL's I I have set up for the Wan Interface. What am I missing.
    10 permit icmp any host unreachable
    20 permit icmp any host echo
    30 permit icmp any host echo-reply
    40 permit icmp any host packet-too-big
    50 permit icmp any host time-exceeded
    60 permit icmp any host traceroute
    70 permit icmp any host administratively-prohibited
    80 permit tcp any host eq 22
    90 permit tcp any host eq domain
    100 permit tcp any host eq 443
    110 permit tcp any host eq 4080
    120 permit tcp any host eq 5223
    130 permit udp any host range 16399 16472
    140 permit udp any host eq 80
    150 permit esp any any
    160 permit udp any eq ntp any
    170 permit udp any any eq isakmp
    180 permit udp any any eq non500-isakmp

Question by:Scott_Smith24
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
LVL 79

Accepted Solution

lrmoore earned 500 total points
ID: 35185004
He may need TCP/10000 open
 175 permit tcp any any eq 10000
Or an established permit
 15 permit tcp any any established

Do you have firewall inspection applied?

Featured Post

Secure Your Active Directory - April 20, 2017

Active Directory plays a critical role in your company’s IT infrastructure and keeping it secure in today’s hacker-infested world is a must.
Microsoft published 300+ pages of guidance, but who has the time, money, and resources to implement? Register now to find an easier way.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question