[VPN] RE: Cisco PIX 501 and Cisco remote VPN client&In-Reply-To=20040130150404.67610.qmail at mail.reds

Adam Pierce Adam.Pierce at hutto.txed.net
Mon Apr 12 21:26:28 EDT 2004

Here's a few things you are missing.
First, you need an access-list to keep your vpn traffic from being nat.
     access-list 101 permit ip "vpn pool
You'll also need another nat statement to put this access-list in
     nat (inside) 0 access-list 101
Your VPNpool will need to be in a different network than your internal
network so it can be routed.  It's also a good idea to not use numbers
that are frequently used in home networks, i.e. or 
     ip local pool VPNpool
These issues will certainly give you problems.  I hope this helps!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/vpn/attachments/20040412/ff2beefc/attachment.htm 

More information about the VPN mailing list