Firewall Wizards mailing list archives

RE: (no subject)

From: "Ben Nagy" <ben () iagu net>
Date: Fri, 8 Jul 2005 10:34:26 +0200

I'm not sure. However...

-----Original Message-----
[...]
access-list nonat_inside permit ip 192.168.XX.0 255.255.255.0 
192.168.X1.0 255.255.255.0

[...]

ip local pool vpnpool1 192.168.X1.X-192.168.X1.X

[...]

nat (inside) 0 access-list nonat_inside


All good so far - don't NAT traffic going from inside to 192.168.X1.X, which
are the external VPN pool addresses.

[...]

route inside 192.168.X1.X 255.255.X.X 34.45.56.68 1


Uh.. I may well be having a stupid day and it's a long time since I played
happy-pix-games, but why are you routing your VPN addresses to the
_internal_ interface?

ben

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

(no subject) Spearman, William CONT (FISC YOKO) (Jul 07)
- RE: (no subject) Ben Nagy (Jul 08)