Few Troubleshooting ideas:
1] make sure 'interesting traffic' is not NATTED before crypto map can work on it
int fa0/0 - check ACL
int dialer 1 - crypto map
2] enable split tunneling & use a different pool of address
3] on inside interface, enable proxy-arp
int fa0/0
ip proxy-arp
! NAT network
interface Vlan5
description Internal NAT LAN$FW_INSIDE$
ip address 10.1.1.1 255.255.255.0
ip access-group 115 in
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip route-cache flow
4] On Win2003 server, disable Routing & Remote Access
- otherwise cannot ping and RDC to the server
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment