accès impossible à mon reseau local via internet vpn Fermé

Question

Bonjour, 
SVP, je suis entrain de configurer du vpn sur un routeur cisco pour permettre un accès au réseau local via internet. Actuellement, j'arrive a ma connecter au au routeur cisco via vpn client. Le ping vers l'interface du routeur connecté au Lan passe mais je n'arrive a acceder aux PC du LAN. par ailleurs,  le routeur me met cet erreur :*Oct 18 09:46:11.509: %CRYPTO-4-RECVD_PKT_NOT_IPSEC: Rec'd packet not an IPSEC packet. (ip) vrf/dest_addr= /255.255.255.255, src_addr= 192.168.1.1, prot= 17


voici la configuration de mon routeur 
ROUTEUR_V#sh runBuilding configuration...Current configuration : 2824 bytes!version 15.3service timestamps debug datetime msecservice timestamps log datetime msecservice password-encryption!hostname ROUTEUR_V!boot-start-markerboot-end-marker!aqm-register-fnf!!aaa new-model!aaa authentication login userauthen localaaa authorization network groupauthor local!aaa session-id common!ip dhcp excluded-address 192.168.8.1ip dhcp excluded-address 192.168.8.3ip dhcp excluded-address 192.168.8.4ip dhcp excluded-address 192.168.8.5!ip dhcp pool vlan1 network 192.168.8.0 255.255.255.0 default-router 192.168.8.1 dns-server 81.91.236.71!ip cefno ipv6 cef!parameter-map type urlf-glob facebook pattern facebook.com pattern *.facebook.com!multilink bundle-name authenticated!license udi pid C881-K9 sn FCZ2032C180!username user password 7 1511021F0725!crypto isakmp policy 1 encr 3des hash md5 authentication pre-share group 2!crypto isakmp client configuration group vpnclient key cisco123 dns 8.8.8.8 domain aubaine.local pool ippool!crypto ipsec transform-set myset esp-3des esp-md5-hmac mode tunnelcrypto dynamic-map dynmap 10 set transform-set myset reverse-route!crypto map clientmap client authentication list userauthencrypto map clientmap isakmp authorization list groupauthorcrypto map clientmap client configuration address respondcrypto map clientmap 10 ipsec-isakmp dynamic dynmap!interface Loopback0 ip address 10.11.0.1 255.255.255.0 ip nat inside ip virtual-reassembly in!interface FastEthernet0 no ip address!interface FastEthernet1 no ip address!interface FastEthernet2 no ip address!interface FastEthernet3 no ip address!interface FastEthernet4 ip address xx.xxx.xxx.xxx ip nat outside no ip virtual-reassembly in ip policy route-map VPN-Client duplex auto speed auto crypto map clientmapinterface Vlan1 ip address 192.168.8.1 255.255.255.0 ip nat inside ip virtual-reassembly inip local pool ippool 192.168.1.1 192.168.1.6ip forward-protocol ndip http serverno ip http secure-serverip nat inside source list 101 interface FastEthernet4 overloadip route 0.0.0.0 0.0.0.0 xx.xxx.xxx.xxxroute-map VPN-Client permit 10 match ip address 144 set ip next-hop xx.xxx.xxx.xxxaccess-list 101 deny   ip 192.168.8.0 0.0.0.255 192.168.1.0 0.0.0.255access-list 101 permit ip 192.168.8.0 0.0.0.255 anyaccess-list 144 permit ip 192.168.1.0 0.0.0.255 anycontrol-planemgcp behavior rsip-range tgcp-onlymgcp behavior comedia-role nonemgcp behavior comedia-check-media-src disablemgcp behavior comedia-sdp-force disablemgcp profile defaultline con 0 no modem enableline aux 0line vty 0 4 transport input allscheduler allocate 20000 1000end

Merci

brupala · Answer

Salut,
il semble qu'il  manque pas mal d'informations sur le site distant :
http://www.lolokai.com/blog/2012/03/27/configuration-dun-vpn-ipsec-entre-deux-routeurs-cisco/

israel2017 · Answer

Merci Mr Brupala,
SVP, moi je ne suis pas entrain de faire une configuration site to site (entre deux routeurs) mais un remote access

Accès impossible à mon reseau local via internet vpn

2 réponses

Discussions similaires