Questions

Answer for:

Site to Site VPN 2 851W ?

Message 4 of 9

View entire thread
+
0 Votes
NetMan1958

It's your NAT config in that you are applying NAT to the tunnel traffic. Change your access-list to an extended access-list like so:
For Router A
access-list 101 deny ip 10.0.0.0 0.0.0.255 192.168.2.0 0.0.0.255
access-list 101 permit ip 10.0.0.0 0.0.0.255 any
ip nat inside source list 101 interface FastEthernet4 overload

For Router B
access-list 101 deny ip 192.168.2.0 0.0.0.255 10.0.0.0 0.0.0.255
access-list 101 permit ip 192.168.2.0 0.0.0.255 any
ip nat inside source list 101 interface interface Dialer0 overload