Home | Troubleshooting |  Quick Setup  |  Cisco How to  |  Data Recovery  |  Forums   | Blog | IT Exam Practice | Services  | About Us | Chicagotech MVP  | Search  | Contact Us  |                 

 

Cisco Router/Firewall 

Can ping from the router but not from inside computers
Can't access the VPN client in the LAN after establishing Cisco VPN client
Cisco VPN client cannot access any remote resources
 Different port-map and NAT
How to delete VPN session
How to enable SSH on Cisco PIX 5xx
How to forward port to private IP on Cisco Router 831
How to enable outside access to PIX 515
 Windows 2003 cannot access remote network using Cisco VPN

 

Can ping from the router but not from inside computers

Causes: 1. Missing ip nat inside for the private interface;
2. Missing ip nat outside for the public interface;
3. Missing ip nat inside source # interface E1 overload.

 For consultants, refer to case 083104RL

Can't access the VPN client in the LAN after establishing Cisco VPN client

For the security reason, Cisco VPN client disables LAN access by design. If you wish to allow other machines on the local LAN to talk directly to the machine which has established a VPN. This can be done by clicking the options button of the Cisco VPN client>Properties and checking Allow Local LAN access.  For consultants, refer to case 091404CS.

Cisco VPN client cannot access any remote resources

Symptom: You are using Cisco VPN client to establish VPN connection on Cisco PIX. The PIX assigns ip 192.168.1.1 but you can't ping LAN ip like 10.0.0.10.

Cause: The PIX need nat inside command line. For consultants, refer to case 110504RL.

Different port-map and NAT

port-map is for re-map ports while NAT is for port-forwarding.

For consultants, refer to case 083104RL

How to delete VPN session

Symptoms: We have PIX 515 running as VPN server. We would like to know how to delete the VPN session. From Device Manager, We can see the session but on option to delete it.

Resolutions: you can use clear command-line to delete the VPN session, for example, clear ipsec sa peer x.x.x.x.

How to enable SSH on Cisco PIX 5xx

Add this command line: SSH ip mask outside

How to forward port to private IP on Cisco Router 831

Assuming the private ip is 192.168.1.2 and Ethernet1 is outside port, add the following command line.

ip nat inside source static tcp 192.168.1.2 port # interface Ethernet 1 port #

For consultants, refer to case 090304RL

How to enable outside access to PIX 515

Do http x.x.x.x y.y.y.y outside for PDM, and telnet x.x.x.x y.y.y.y outside for telnet. Note: x.x.x.x is IP address and y.y.y.y is subnet mask.

or go to PDM>Configuration>Administrator>PDM/HTTPS, add hosts/networks.

 
 

Hit Counter   This web is provided "AS IS" with no warranties.
Copyright © 2002-2018 ChicagoTech.net, All rights reserved. Unauthorized reproduction forbidden.