|
Posted by Tilman Schmidt on April 8, 2008, 4:27 am
If you were Registered and logged in, you could reply and use other advanced thread options
lwpowers@gmail.com schrieb:
> I have a Cisco 1700 router with dual WIC/T1's
>
> LAN users are assigned NAT IP addresses from the Cisco 1700 via DHCP
> from 10.0.0.100 to 10.0.0.200.
>
> 10.0.0.2 - 10.0.0.15 are 1:1 configured to our 16 internet routable IP
> addresses.
>
> Users who receive an IP address via DHCP have all desired
> functionality, including surfing, email, etc... however they cannot
> establish a VPN.
>
> The same users can statically assign a 1:1 IP address (i.e. 10.0.0.15)
> and establish a VPN without any issue.
>
> Im stuck. Anyone know why this is happening?
It's not too clear what you or your users are trying to do, but as a
wild guess, you may have hit the fact that standard IPSec does not work
across NAT. If so, you'll want to use the "NAT traversal" option.
HTH
T.
--
Please excuse my bad English/German/French/Greek/Cantonese/Klingon/...
|