[vpn] Local LAN access with Cisco VPN-Client for Linux
Dirk Wagner
Wagner.Dirk-Michael at web.de
Wed Apr 24 10:52:09 EDT 2002
Hi,
i have some trouble with accessing my local network when a connection to
a Cisco VPN Concentrator ist established.
Involved machines:
1) Linux box as local network server (SuSE 7.0, Kernel 2.2.16)
with running Cisco VPN Client 3.5.1 for Linux
first ethernet card (eth0) with IP 10.73.200.10
second card (eth1) with IP 192.168.1.1
2) Cisco VPN 3000 Concertrator, IP 10.73.10.100,
local LAN access enabled, network 'locallan'
defined: 192.168.1.0/0.0.0.255
There is no problem to ping a box in the 10.x.x.x or in the 192.168.1.0
net, if there is no connection to the vpn server.
But, as soon as the connection to the vpn server ist established, no
access to the workstations in the 192.168.1.0 net is possibel (e.g.
ping). Only possible is to ping the same machine on 192.168.1.1.
split tunnel mode is enabled by the client:
EnableLocalLAN=1
EnableNAT=0
(not needed?)
the command 'vpnclient stat' reports that there ist a local network
under 'configured routes' which is not secured. Thats ok.
But what's wrong? Is it a configuration issue in the pcf-file?
[main]
Description=VPN Test
Host=10.73.10.100
AuthType=1
GroupName=locallan
GroupPwd=local
enc_GroupPwd=
EnableISPConnect=0
ISPConnectType=0
ISPConnect=
ISPCommand=
Username=
SaveUserPassword=1
UserPassword=
enc_UserPassword=
NTDomain=
EnableBackup=0
BackupServer=
EnableMSLogon=0
MSLogonType=1
EnableNat=0
CertStore=0
CertName=
CertPath=
CertSubjectName=
CertSerialHash=00000000000000000000000000000000
DHGroup=2
ForceKeepAlives=0
PeerTimeout=0
EnableLocalLAN=1
Any hints? It's very important to access the local network while a vpn
connection ist established.
thx
Dirk
--
Dirk-Michael Wagner *** Wagner.Dirk-Michael at web.de
Open Minds. Open Sources. Open Future. - Linux!
VPN is sponsored by SecurityFocus.com
More information about the VPN
mailing list