Solved

Cisco VPN's

Posted on 2011-03-21
1
445 Views
Last Modified: 2012-06-27
I have a cisco 2801 router with the security pack on it. I have VPN set up so the my outside users can VPN into our office. The problem I'm having is that I have a consultant who is trying to VPN into his office while on our network. He is running a Cisco Concentrator on his end. The VPN can't make a connection. It works fine from outside our network just not inside my network. Here is the ACL's I I have set up for the Wan Interface. What am I missing.
 
    10 permit icmp any host xxx.xxx.xx.xx unreachable
    20 permit icmp any host xxx.xxx.xx.xx echo
    30 permit icmp any host xxx.xxx.xx.xx echo-reply
    40 permit icmp any host xxx.xxx.xx.xx packet-too-big
    50 permit icmp any host xxx.xxx.xx.xx time-exceeded
    60 permit icmp any host xxx.xxx.xx.xx traceroute
    70 permit icmp any host xxx.xxx.xx.xx administratively-prohibited
    80 permit tcp any host xxx.xxx.xx.xx eq 22
    90 permit tcp any host xxx.xxx.xx.xx eq domain
    100 permit tcp any host xxx.xxx.xx.xx eq 443
    110 permit tcp any host xxx.xxx.xx.xx eq 4080
    120 permit tcp any host xxx.xxx.xx.xx eq 5223
    130 permit udp any host xxx.xxx.xx.xx range 16399 16472
    140 permit udp any host xxx.xxx.xx.xx eq 80
    150 permit esp any any
    160 permit udp any eq ntp any
    170 permit udp any any eq isakmp
    180 permit udp any any eq non500-isakmp
Thanks

0
Comment
Question by:Scott_Smith24
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 35185004
He may need TCP/10000 open
 175 permit tcp any any eq 10000
Or an established permit
 15 permit tcp any any established

Do you have firewall inspection applied?
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Powerful tools can do wonders, but only in the right hands.  Nowhere is this more obvious than with the cloud.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question