republican-creole
Search:  

 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Equipment Support » Hardware By Brand » Cisco » [Config] How do I assign default gateway for a PPTP VPN client
Search Topic:
Uniqs:
686
Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
PPTP connectiona cisco »
« Initial Configuration of ASA5505's  
AuthorAll Replies

howlym

join:2009-08-18
San Leandro, CA

[Config] How do I assign default gateway for a PPTP VPN client

Hi, guys

I've config the PPTP VPN on my 2651xm router, everything is good, I can dialin, I can get the IP address, I can access all servers in the LAN, but I can't access the internet through the router, I notice there's no default gateway assigned to the client, even I put "async-bootp gateway xxx.xxx.xxx.xxx" the config, there's no use.

Any help will be appreciated!



kamikatze

join:2007-11-02
Re: [Config] How do I assign default gateway for a PPTP VPN clie

Here it is,

»kc.forticare.com/admin/virtual/i···nfig.png

[ ] Use default gateway on remote network

howlym

join:2009-08-18
San Leandro, CA
Thank you so much for the prompt reply, but we do need the VPN client go surf via the VPN router. How do I config this?

Thanks


kamikatze

join:2007-11-02

1 edit
Just make sure the above checkbox is ON and your local VPN pool,

ip local pool PPTP 10.123.3.100 10.123.3.200

is part of your NAT statement (ACL).

Basically what you're looking for is a non-split-tunnel configuration.

howlym

join:2009-08-18
San Leandro, CA
haha, how stupid I am.

I did forget to put the VPN client's IP range to NAT ACT

Now it works like a charm!

geneticx

join:2009-11-06
Hello, I'm also having the same problem do you mind if you explain to me how you added the range to your NAT ACL? Thank you very much

howlym

join:2009-08-18
San Leandro, CA
Sure

You have to put your VPN client's IP range into your NAT ACL

geneticx

join:2009-11-06

said by howlym See Profile :

Sure

You have to put your VPN client's IP range into your NAT ACL
Thanks for the reply, I been searching desperately for long hours.

Ok, so I have to enter my VPN client's IP range into my NAT ACL: but I don't know how to do this, can you please elaborate on this.. these are some of my NAT rules

ip nat inside source static tcp 192.168.1.100 portnumber interface Dialer1 portnumber

is this ^ how I suppose to do it?

Your help is much appreciated.

howlym

join:2009-08-18
San Leandro, CA

ip nat inside source static tcp 192.168.1.100 portnumber interface Dialer1 portnumber

this is not ACL, ACL is something like

please post your config

geneticx

join:2009-11-06
Here is my pastebin: »pastebin.com/d64d8e432

Thanks..

howlym

join:2009-08-18
San Leandro, CA

first of all, have you put "ip nat outside" in your Ethernet1 session?
second, I saw you have this line
in the config file.

You should do it like this
or this will Nat the Dialer1 to your 192.168.1.105 only, not your whole LAN.

geneticx

join:2009-11-06

This is what I have for both of my interfaces:


didn't notice that the ports got chopped off at the end of Dialer1, so yes they are like that already. Thanks..

howlym

join:2009-08-18
San Leandro, CA
I didn't see "ip nat outside" under your interface Ethernet1 session

geneticx

join:2009-11-06

ip nat outside is assigned to Dialer1, correct me if Im wrong but I thought you can only have one ip nat outside and one ip nat inside.

this is my Dialer1 Interface:

geneticx

join:2009-11-06

reply to howlym
This is my full config with "nat oustide" on Ethernet1 as you suggested. Thanks in advance.

-
Forums » Equipment Support » Hardware By Brand » CiscoPPTP connectiona cisco »
« Initial Configuration of ASA5505's  


Sunday, 06-Dec 01:56:35 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [163] Comcast Releasing Promised Usage Meter
· [147] Avast Antivirus Has Gone Mad
· [128] Comcast Makes NBC Universal Acquisition Official
· [123] The Bandwidth Hog Does Not Exist
· [105] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [101] Google Invades ISP, OpenDNS Turf With Google Public DNS
· [85] FCC Ponders Moving From PSTN To IP Voice
· [82] Latest Consumer Reports Survey Not Kind To AT&T
· [80] New Bill Aims To Limit ETFs
· [75] Sprint Defuses GPS Privacy Media Bomb
Most people now reading
· False positive in Avast! or is it real? [Security]
· Wife might have to work in.... Iowa for a few months!!! [General Questions]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· RG Firmware update to VDSL2 this morning [AT&T U-verse]
· Windows 7 boot manager editing questions [Microsoft Help]
· How fast is your upstream internet connection? [General Questions]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· What is the spell hit cap for a lvl 80 full arcane spec mage [World of Warcraft]
· First commercial tool to crack BitLocker arrives (Updated) [Security]