In your config below the vpn client is being assigned an address that is on
a different subnet than the inside interface of the pix and there is no sign
of a router on that subnet (no default inside route to a router).
BTW, you may want to get rid of the conduit permit any any!
Chris
""Anh Lam"
Looks like you have the NAT 0 in place. I'm wondering about the IP Pool. I
see your access-list 101 allows 172.16.1.0 to 172.16.2.0, both subnetted to
/24. I wonder if maybe the PIX is looking at the IP Pool as a Class B
address since you cannot specify the mask in the IP Pool statement? If so
know that the exact
configuration works on the PIX520 but not the PIX515. Even Cisco TAC guy is
also scratching his head over this.
>From: "chris"
>Reply-To: "chris"
>To: [EMAIL PROTECTED]
>Subject: Re: help with troubleshooting Cisco VPN connection [7:236
: Re: help with troubleshooting Cisco VPN connection [7:23695]
In your config below the vpn client is being assigned an address that is on
a different subnet than the inside interface of the pix and there is no sign
of a router on that subnet (no default inside route to a router).
BTW, you may want to
4 matches
Mail list logo