Folx, Ther serial port of my router is connected to PVT network and ethernet is connected to Internet,throught which i am going to establish VPN(Ipsec).
My question are... 1)I am not running nat on my router,do i still need to add the following on my router... access-list 130 deny ip 10.65.0.0 0.0.255.255 172.16.2.11 0.0.0.0 access-list 130 permit ip 10.65.0.0 0.0.255.255 any route-map nonat permit 10 match ip address 130 ip nat pool branch netmask ip nat inside source route-map nonat pool branch overload 2)My PVT network mask is 252...so would my access_list mask would be 0.0.0.3 access_list permit ip 192.168.5.36 0.0.0.3 172.16.3.2 0.0.0.255 Cheers Ramesh Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=28806&t=28806 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
