Heres my situation. I have my main office and a branch office i am trying to set up site to site vpn for. Host site has cable internet coming into fa0/1 on cisco 1841 router and branch has a t1 coming into s0/0/0 on another cisco 1841 router. Connections work fine at either location. set up the site to site vpn this morning and all seemed to go smoothly, connection came right up and all the SDM automatic tests passed fine. Here is the issue:
From main office, i can ping or telnet to the branch office’s INTERNAL network address with no problem. From the branch router i can only ping to the EXTERNAL address of the main office router. example:
main external of xxx.xxx.xxx.xxx
main internal on 192.168.2.x
branch external of xxx.xxx.xxx.xxx
branch internal on 192.168.3.x
From 192.168.2.111 ( my workstation), i can telnet to the branch router via EITHER xxx.xxx.xxx.xxx, OR 192.168.3.50 and get solid connection.
while connected to Branch router, if i try and ping back to the main office router or any workstation on that internal network, i get 0 responses. I can ping the main external address but thats it.
Now I am assuming that this is an access list issue at the main office….any other suggestions? I am willing to post the config if necc or email it. Just getting frustrated that i cannot get this to function.
Thanks in advance for all your assistance.