Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco VPN Software/Concentrator Question

Status
Not open for further replies.
ts8586

ts8586

MIS
Nov 28, 2004
92
US
Hello, I have a remote user that needs to access the network from home. We'll call it Network B, 10.6.x.x
He has the Cisco VPN Client software on his laptop, and he can establish a tunnel to Headquarters Network A, 10.1.x.x without a problem. However, that does him no good since Networks B-Z aren't accessible.

What would be your troubleshooting steps regarding this problem? Thanks for any helpful advice.

 
Sort by date Sort by votes
A static route from the vpn assigned pool to whatever they want to reach. What kind of equipment?

Burt
 
Upvote 0 Downvote
A 3005 Concentrator. I'm going to have to get the static route info. I did a search and that came up.

 
Upvote 0 Downvote
I assume networks B-Z are on his home network? If so you would have to configure split tunneling. Although for security reasons I dont recommend it.
 
Upvote 0 Downvote
Not sure if this applies to the Cisco VPN, but in Netscreen on the remote client where you state 10.6.x.x is the network range, change that to 0.0.0.0 this allows access to all ranges.

Cheers,

Steff
 
Upvote 0 Downvote
Brain,

No, networks B-Z are offices in different cities. "A" is headquarters.



SteffK, I don't think that option is set on the client, but it may be on the Concentrator. Thanks for the idea.

 
Upvote 0 Downvote
Okay I was confused because you refered to the remote network as Network B. How are the other networks connected to A?
 
Upvote 0 Downvote
ts8586,

If that is only available in the Concentrator, what about changing the policy?
 
Upvote 0 Downvote
Boy, I sure left a lot of details out. Sorry about that. Sites B-Z come back to HQ (A) via their own VPN tunnels. The way it was set up several years ago, is that if a user needed access to Site D for example, they'd connect to one of the Concentrators at HQ, then hop over to Site D. It used to work, now it doesn't. We were told that it would be easier to administer this way, rather than have to set up the users on the Pix 506E's at the remote sites.

 
Upvote 0 Downvote
An ASA supports Hub and Spoke VPNs like that, but I am not sure the concentrator does.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

teknance
  • Locked
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
451
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question
Best vpn safe and fast
Replies
4
Views
339
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
280
sircles
sircles
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
245
Joon Smith
Joon Smith
LearningNetworking
  • Locked
  • Question
Linking Hosts on the same subnet via VPN
Replies
0
Views
320
LearningNetworking
LearningNetworking

Part and Inventory Search

Sponsor

Back
Top