Internal error 2738 of VPN client

Hello.

I internal error 2738 unstall away. How to fix the error?

Ghana you.
Sent by Cisco Support technique iPad App

That's nice.

Good day

Rate Helful messages

Tags: Cisco Security

Similar Questions

  • Internal error 2738

    "Internal error 2738". This is the error message I have on several occasions when I try to install a program. I get the same error in Windows XP Professional edition also. Please give me a solution for this problem.

    Hello Debbie,.

    The MSI package that you are trying to run, is probably to use a custom script. See if information in the following links help.

    Difficulty to find errors Windows Installer 2738 and 2739 in Windows Vista

    Ramesh Srinivasan, Microsoft MVP [Windows Desktop Experience]

  • Internal error 2738 when uninstalling Biztalk 2006 on Win 7

    I have a win 7 32 bit laptop which has Biz Talk 2006 R2 installed. When you try to uninstall the Biz Talk 2006 R2, I get an error "internal error 2738". I tried to register the dll using regsvr32 vbscript.dll vbscript, but that also has not solved the problem. I tried to look it up to various articles, but I'm not able to find a solution to this problem.

        

    I was able to solve the problem. Apparently, the problem was not with the VBScript.dll file which not saved. It was with the dll of vbscript being registered as a user instead of the machine. When the dll is registered as a normal user, it is registered under the USER in the registry settings. Deleting the record using the following command to be solved the problem and I managed to uninstall Biz Talk.

    Order: "reg delete/f"HKCU\SOFTWARE\Classes\CLSID\ {B54F3741-5B07-11CF-A4B0-00AA004A55E8}"

  • Internal error 2738, cannot install Auto Cad Office of self.

    I get the following error message when installing thrid third-party software, Auto Cad Office of self.  The message is "internal error 2738".  What could be the solution?  My system is windows 7 ulitmate, 32 bit service pack 1

    Hello

    What version of Auto Cad you trying to install?

    Did you install the software as soon as possible?

    Please click the link below and check.

    Diagnose and solve the program installation and uninstallation problems automatically

    http://support.Microsoft.com/mats/Program_Install_and_Uninstall/

    You can also post your question on the link below for further information.

    http://forums.Autodesk.com/

    I hope this helps.

  • An internal error occurred in vSphere Client

    Hi I am getting an "error serialized Type" whenever I try to add a new hard drive on an existing virtual machine.

    The exact error is:

    An internal error has occurred in the vSphere Client.

    Details: The type serialized in the .resources file was not of the same type that the .resources file said it contained.  EXPECTED "System.Windows.Forms.ListViewItem" but read ' System.Windows.Forms.ListViewItem + ListViewSubitem "

    \

    any ideas?

    It looks like a bug in .net 4. What 2 following reported issues seem to be related.

    http://connect.Microsoft.com/VisualStudio/feedback/details/551966/exception-thrown-when-a-ListView-on-a-localized-form-has-subitems-added-at-design-time

    https://connect.Microsoft.com/VisualStudio/feedback/details/647407/Visual-Studio-Designer-cannot-show-the-designer-if-we-set-the-localizable-property-for-the-control

  • uninstaller internal error 2738

    When opening my computer, a window popped up saying runtime error.  The problem is with a card program, I went to uninstall the program, and another window pops up saying error internal 2738 and wouldn't let me not uninstall the program.  I have Vista Home premium.  HELP PLZ!  SandyHola

    Hello

    1 did you change on your computer?

    2 are you able to start your computer in normal mode?

    Method 1:

    I suggest you run the fix it tool and check.

    Diagnose and solve the program installation and uninstallation problems automatically

    http://support.Microsoft.com/mats/Program_Install_and_Uninstall/

    Method 2:

    I also suggest you to uninstall the program from the link and check.

    How to solve problems when you install or uninstall programs on a Windows computer

    http://support.Microsoft.com/kb/2438651

    Method 3:

    I also suggest you perform the clean boot and check.

    How to troubleshoot a problem by performing a clean boot in Windows Vista or in Windows 7

    http://support.Microsoft.com/kb/929135

    Note: After a repair, be sure to set the computer to start as usual as mentioned in step 7 in the above article.

    See also:

    http://social.technet.Microsoft.com/forums/en-us/systemcentercapacityplanner/thread/d4925887-7280-4314-9ac8-e5f258fc6077

  • Ping LAN internal via the IPSec VPN Client

    It's my scenario.

    Software Version 7.2 (1)

    I activated the VPN in the external Interface. The IPSec Client pool is in the range 192.168.98.150 - 192.168.98.175.

    • Allowed "a whole icmp" out Interface access both within the Interface.
    • ICMP & ICMP error inspection is enabled.
    • NAT-control is disabled.

    Clients are unable to ping any IP within the LAN 'inside' but at the same time, they are able to access the devices in the LAN using HTTP, HTTPS, SSH & TELNET.

    CASE 1:

    access-list SHEEP extended permits all ip 192.168.98.0 255.255.255.0

    NAT (Inside) 0 access-list SHEEP

    I get the following log "translation portmap creation failed for CBC icmp outdoors"

    CASE 2:

    If I add a static 192.168.98.0 public (exterior, Interior) 192.168.98.0 netmask 255.255.255.0

    I am able to Ping and the problem is solved.

    Could someone explain please this behavior?

    1. Why ICMP only needs a NAT device when TCP & UDP traffic works very well.
    2. Why a portmap translation error? Why not dynamic identity NAT?

    Hello

    So he was correspondent to a configuration 'nat' on the 'outside' interface that had no configuration corresponding 'global' for the destination (probably inside) interface which caused problems and produces the 'portmap' error.

    Please do not forget to mark an answer as the correct answer, if she answered your question or useful rate responses

    -Jouni

  • The Web Acceleration Client error (513) - internal error of the Web acceleration Client has detected an internal error that caused the connection between the accelerometer of the Web

    The Web Acceleration Client error (513) - internal error
    The Web acceleration Client has detected an internal error that caused the connection between the customer to accelerate Web and server acceleration Web to be broken. A new attempt of the web page may correct the problem.

    I get this error at all times when working in the ancestry.com Web site. I have to reload the page on almost every search I do on this Web site. It is the site of the ONLY I get this error message, can run uninterrupted for several hours on other sites and never get this message. I talked to the people at Ancestry.com support and they did 2 recommendations: turn antivirus (did not help) or switch to another web browser. I tried both 11 IE and Chrome Version 31.0.1650.63 m and I have no problem with either of these 2 browsers this error.

    Is there a problem with the way Firefox and ancestry.com communicate?

    Hello byron.lewis, many site problems can be caused by corrupted cookies or cache. To try to solve these problems, the first step is to clear cookies and cache.
    Note: This will be you temporarily disconnect all sites, you're connected to.
    To clear the cache and cookies to do the following:

    1. Go to Firefox > history > clear recent history or (if no Firefox button is displayed) go to tools > clear recent history.
    2. Under "Time range to clear", select "all".
    3. Now, click the arrow next to details to toggle the active details list.
    4. In the list of details, see the Cache and Cookies and uncheck everything.
    5. Now click the clear now button.

    More information can be found in article to clear your cache, history, and other personal information in Firefox .

    This solve your problems? Please report to us!

    Thank you.

  • Inside the server can't ping remote vpn client

    My simple vpn client can accumulate the tunnel vpn with my Office ASA5510 success and my vpn client can ping the internal server. But my internal server cannot ping the remote vpn client. Even the firewall vpn client windows is disable.

    1. in-house server can ping Internet through ASA.

    2 internal server cannot ping vpn client.

    3 Vpn client can ping the internal server.

    Why interal Server ping vpn client? ASA only does support vpn in direction to go?

    Thank you.

    Hello

    Enable inspect ICMP, this should work for you.

    Policy-map global_policy
    class inspection_default
    inspect the preset_dns_map dns
    inspect the icmp
    inspect the icmp error

    inspect the icmp

    To configure the ICMP inspection engine, use the command of icmp inspection in class configuration mode. Class configuration mode is accessible from policy map configuration mode.

    inspect the icmp

    HTH

    Sandy

  • Internal error OR-farm - impossible to compile the FPGA VI

    Hello!

    When I try to compile any FPGA VI with LabVIEW2013 or 2012 SP1, I get the following error:

    "Year error occurred trying to connect to this server compilation."

    Details:

    Internal error OR the farm: Client Server received unexpected or bad data. »

    Intermediate files are not generated, the error message appears immediately after I have select build of build specification or I click the run arrow.

    I use the local server for compilation.

    The equipment I use: CompactRIO Evaluation Board - SbRIO9636, DELL laptop, Intel core2 Duo T5800, 2 GHz, 3 GB RAM, Windows 7 Ultimate 64-bit, SP1.

    The intermediate files CAN be generated without any problems if I select in the menu. If I run the FPGA application compile worker, a ToolTip message specifying that "FPGA compile runs", but after a few seconds, another message appears: newspaper several attempts were unsuccessful - please see attached images.

    At first, I thought that my firewall (Comodo 6.3) is the reason for this, so I disabled it but nothing changed. Then I tried to fix LabVIEW FPGA and XILINX tools with the firewall disabled but din do not solve the problem. I tried with LabVIEW SP1 of 2012 and 2013.

    If you have any suggestions, please let me know! Thank you!

    We would like that you try to reset the NIAuth database by following these steps:

    1. go to Windows Services (Bring up Windows with Ctrl + Alt + Delete Task Manager, click the Services tab, click the Services button at the bottom right of the window.

    2 stop the NI Application Web Server and NI System Web Server services in this order (right click, stopping service and select).

    2 backup, and then delete all the files under %PROGRAMDATA%\National Instruments\NIAuth: registry.bin and commitmark.

    3. run NI System Web Server and NI Application Web Server services in this order.

    4. navigate to http://localhost:3580 / connection of an IE on the local computer and try to log in with username "admin" and password empty. Succeeds, the server will return one signed in as: message from the admin.

    After you follow these steps, try and connect to the FPGA compiler, and then let me know what are the results.

  • Error in installing AnyConnect Client

    During his installation of Cisco AnyConnect Secure Mobility Client, I got the error: "VPN client agent could not create the filing of interprocess communication."

    Can I fix this error? What should do?

    Hello

    This is seen when internet connection sharing is enabled. (ICS) Internet connection sharing is not compatible with AnyConnect. You must disable ICS for correct functionality AnyConnect.
    When you try to launch AnyConnect on a PC on which ICS is already running, AnyConnect returns this error message:

    Vpn client agent failed to create the repository of interprocess communication.

    To resolve this issue, disable the ICS and restart AnyConnect.

    How to disable ICS
    (A) open network connectivity
    1) start-> Control Panel-> network and Internet-> network and sharing Center
    -> Manage network connections
    (2) right-click the connection, and then click the sharing tab and ' t allow others
    network users to connect through the internet connections to this computer check box.

    (B) stopping Service
    Right click Computer-> Management-> Service and Application-> service->
    Internet Connection Sharing (ICS)-> Stop

    Kind regards

    Kanwal

    Note: Please check if they are useful.

  • The internal error message when you try to download the windows OS for Palm.

    Whenever I try to download from a disk or download from the site of Palm, the palm operating system, I get a message saying "Internal error 2738" and he won't let the software load. I'm stuck and can't do anything. Help, please. Thank you.

    Using a search engine, I found this answer in a few seconds...

    http://forums.support.Roxio.com/index.php?showtopic=19110

    WyreNut

  • IPSec remote VPN with VPN client in error

    Hello

    ASA 5505 configuration is: (installation using ASDM)

    output from the command: 'show running-config '.

    : Saved
    :
    ASA Version 8.2 (5)
    !
    hostname TEST

    Select _ from encrypted password
    _ encrypted passwd
    names of
    !
    interface Ethernet0/0
    switchport access vlan 2
    !
    interface Ethernet0/1
    !
    interface Ethernet0/2
    !
    interface Ethernet0/3
    !
    interface Ethernet0/4
    !
    interface Ethernet0/5
    !
    interface Ethernet0/6
    !
    interface Ethernet0/7
    !
    interface Vlan1
    nameif inside
    security-level 100
    IP 192.168.1.1 255.255.255.0
    !
    interface Vlan2
    nameif outside
    security-level 0
    IP address dhcp setroute
    !
    passive FTP mode
    sap_vpn_splitTunnelAcl list standard access allowed 192.168.1.0 255.255.255.0
    inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 192.168.10.0 255.255.255.224
    pager lines 24
    asdm of logging of information
    Within 1500 MTU
    Outside 1500 MTU
    IP local pool test_pool 192.168.10.0 - 192.168.10.20 mask 255.255.255.0
    ICMP unreachable rate-limit 1 burst-size 1
    don't allow no asdm history
    ARP timeout 14400
    Global 1 interface (outside)
    NAT (inside) 0-list of access inside_nat0_outbound
    NAT (inside) 1 0.0.0.0 0.0.0.0
    Timeout xlate 03:00
    Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
    Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
    Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
    timeout tcp-proxy-reassembly 0:01:00
    Floating conn timeout 0:00:00
    dynamic-access-policy-registration DfltAccessPolicy
    AAA authentication http LOCAL console
    Enable http server
    http 192.168.1.0 255.255.255.0 inside
    No snmp server location
    No snmp Server contact
    Server enable SNMP traps snmp authentication linkup, linkdown cold start
    Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
    Crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
    Crypto ipsec transform-set ESP-DES-SHA esp - esp-sha-hmac
    Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac
    Crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
    Crypto ipsec transform-set ESP-3DES-MD5-esp-3des esp-md5-hmac
    Crypto ipsec transform-set ESP-AES-256-SHA 256 - aes - esp esp-sha-hmac
    Crypto ipsec transform-set ESP-AES-128-SHA aes - esp esp-sha-hmac
    Crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
    Crypto ipsec transform-set ESP-AES-128-MD5-esp - aes esp-md5-hmac
    life crypto ipsec security association seconds 28800
    Crypto ipsec kilobytes of life - safety 4608000 association
    crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 pfs Group1 set
    Crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5
    outside_map card crypto 65535-isakmp dynamic ipsec SYSTEM_DEFAULT_CRYPTO_MAP
    outside_map interface card crypto outside
    crypto ISAKMP allow outside
    crypto ISAKMP policy 10
    preshared authentication
    3des encryption
    sha hash
    Group 2
    life 86400
    Telnet timeout 5
    SSH timeout 5
    Console timeout 0
    dhcpd outside auto_config
    !
    dhcpd address 192.168.1.5 - 192.168.1.132 inside
    dhcpd allow inside
    !

    a basic threat threat detection
    Statistics-list of access threat detection
    no statistical threat detection tcp-interception
    WebVPN
    internal sap_vpn group policy
    attributes of the strategy of group sap_vpn
    value of server DNS 192.168.2.1
    Protocol-tunnel-VPN IPSec


    Split-tunnel-policy tunnelspecified
    value of Split-tunnel-network-list sap_vpn_splitTunnelAcl
    username password encrypted _ privilege 0 test
    username test attributes
    VPN-group-policy sap_vpn
    Username password encrypted _ privilege 15 TEST
    type tunnel-group sap_vpn remote access
    tunnel-group sap_vpn General-attributes
    address test_pool pool
    Group Policy - by default-sap_vpn
    sap_vpn group of tunnel ipsec-attributes
    pre-shared key *.
    !
    class-map inspection_default
    match default-inspection-traffic
    !
    !
    type of policy-card inspect dns preset_dns_map
    parameters
    maximum message length automatic of customer
    message-length maximum 512
    Policy-map global_policy
    class inspection_default
    inspect the preset_dns_map dns
    inspect the ftp
    inspect h323 h225
    inspect the h323 ras
    inspect the rsh
    inspect the rtsp
    inspect esmtp
    inspect sqlnet
    inspect the skinny
    inspect sunrpc
    inspect xdmcp
    inspect the sip
    inspect the netbios
    inspect the tftp
    Review the ip options
    !
    global service-policy global_policy
    context of prompt hostname
    no remote anonymous reporting call
    Cryptochecksum:b67cdffbb9567f754052e72f69ef95f1
    : end

    I use customer VPN authentication with IP 192.168.2.20 host group with username:sap_vpn and key pre-shared password but not able to connect to the vpn and the error message attached.

    ASA, set up with the initial wizard ASDM: inside the interface IP 192.168.1.1 (VLAN1) and outside (VLAN2) IP 192.168.2.20 assigned by using DHCP. I use outside interface IP 192.168.2.20 to HOST IP to the VPN client for the remote connection? is it good?

    Please advise for this.

    Hello

    What train a static IP outside? We need a static IP address to connect, please try again and let us know how it works?

    Kind regards

  • AnyConnect vpn client gives error of certificate on ios cisco 2800 series

    Dear all,

    I set up a vpn on cisco router ios simple anyconnect 2811

    I also configured natting on the inorder of router to access the internet for local users

    My problem

    I can not connect same vpn if I use the method of the anyconnect vpn client

    Also please tell me how to access internal resources by configuring split tunneling

    the error I get is as below


    * 08:16:35.947 Feb 8: 252:error:14094416:SSL routines: SSL3_READ_BYTES:sslv3 certificate alert unknown:../../../../cisco.comp/pki_ssl/src/openssl/dist/ssl/s3_pkt
    .c:1062:SSL alert number 46

    Here is my configuration

    ABC host name
    !

    start the flash system: c2800nm-advsecurityk9 - mz.124 - 24.T1.bin

    !
    AAA new-model
    !
    !
    AAA authentication login default local
    local connection SSL-VPN-AUTH authentication AAA
    !
    !
    AAA - the id of the joint session
    !
    dot11 syslog
    IP source-route
    !
    !
    IP cef
    !
    !
    IP-server names 4.2.2.2
    !
    Authenticated MultiLink bundle-name Panel
    !
    !
    !
    Crypto pki trustpoint ABC
    enrollment selfsigned
    crl revocation checking
    rsakeypair ABC 1024
    !
    !
    ABC crypto pki certificate chain
    self-signed certificate 04
    3082023 HAS 308201 3 A0030201 02020104 300 D 0609 2A 864886 F70D0101 04050030
    27312530 2306092A 864886F7 0D 010902 73 732 6569 6173742D 6B 686177 16166D
    616E6565 6A2D7261 31313032 30383038 32333036 5A170D32 30303130 301E170D
    3030305A 31303030 30273125 30230609 2 A 864886 F70D0109 0216166D 65 73732
    2D6B6861 69617374 77616E65 656A2D72 6130819F 300 D 0609 2A 864886 F70D0101
    01050003 818 0030 81890281 8100C16D 1007E434 AFAEE3C1 90141205 E7785754
    FA3C4589 3D6B3D47 57BC54A5 7237E7FE 9B7CA69C 999B4DAF 835B98E9 972CFD03
    5A43488C 05E82E10 9B540AB9 5A54AB0C 525FED0E 05B6F2FF 6703F0BD F28AE6F2
    9E98298D E184CCDC 2D54741D 589 9731 C2BA5191 59DC7DC8 1F03C116 DDCF21EB D
    0BB4E931 02F61F64 D64A6F36 92F70203 010001A 3 76307430 0F060355 1 130101
    FF040530 030101FF 30210603 551D 1104 1A 301882 7373 656961 2 73742D6B 166D
    68617761 2 726130 1 230418 30168014 2FA1E05E 1BD981A0 1F060355 6E65656A
    A3485444 0B151D9E 44A3F6F6 301D 0603 551D0E04 1604142F A1E05E1B D981A0A3
    4854440B 151D9E44 A3F6F630 0D06092A 864886F7 010104 05000381 810096EF 0D
    39D4EEED E3CA162B E6BC1B61 0C3C66ED 02884209 0F4B54F1 BA7BEFF4 CAA206CE
    44 C 99817 134363 2 F29A9E6A 945AA1B4 E4B85ED7 1800DAA1 30BE25C3 8340AE80
    714F8FBD 9A433C4B 3EE2204D 88F7AB6D 929B5C88 5E7BC2B9 25754390 1622DB7B
    EEB11694 F381E995 59C825BE 52EA5923 F87C43A3 98744BE8 BB27C381 BE14
    quit smoking
    !
    !
    privilege of username XXXX XXXX 15
    username password ABC ABC
    Archives
    The config log
    hidekeys
    !
    !
    !
    !
    !
    !
    !
    !
    interface FastEthernet0/0
    IP address | public IP address. 255.255.255.252
    NAT outside IP
    IP virtual-reassembly
    automatic duplex
    automatic speed
    !
    interface FastEthernet0/1
    IP 192.168.0.7 255.255.255.0
    IP nat inside
    IP virtual-reassembly
    automatic duplex
    automatic speed
    !
    interface FastEthernet0/2/0
    no ip address
    Shutdown
    automatic duplex
    automatic speed
    !
    local pool IP 10.10.10.1 intranet 10.10.10.254
    IP forward-Protocol ND
    IP route 0.0.0.0 0.0.0.0 GATEWAY
    no ip address of the http server
    IP http secure server
    !
    !
    IP nat inside source map route sheep interface FastEthernet0/0 overload
    !
    extended IP access allow-traffic-to-lan list
    deny ip 192.168.0.0 0.0.0.255 10.10.10.0 0.0.0.255
    Licensing ip 192.168.0.0 0.0.0.255 any
    !
    access-list 101 permit ip 192.168.0.0 0.0.0.255 10.10.10.0 0.0.0.255
    !
    !
    !
    sheep allowed 10 route map
    match ip address allow-traffic-to-lan
    !
    !
    !
    WebVPN EIAST gateway
    IP address | public-ip | port 443
    redirect http port 80
    SSL trustpoint ABC
    development
    !
    WebVPN install svc flash:/webvpn/anyconnect-win-2.5.2018-k9.pkg sequence 1
    !
    WebVPN context XYZ
    SSL authentication check all
    !
    !
    political group XYZ
    functions compatible svc
    SVC-pool of addresses "intranet".
    SVC split include 10.10.10.0 255.255.255.0
    SVC-Server primary dns 213.42.20.20
    Group Policy - by default-XYZ
    list of authentication SSL-VPN-AUTH of AAA.
    area of bridge XYZ XYZ
    10 Max-users
    development
    !
    end

    Thank you

    Jvalin

    You could hit the next bug

    CSCtb73337    AnyConnect does not work with IOS if cert not trust/name of offset
    which is set at 12.4 (24) T02.

    Please update the code and give it a try.

  • VPN clients are unable to access internal resources

    Hello

    I have problems with internal resources from access to the content of VPN Clients. They connect using Cisco VPN Client, they connect correctly, an IP address from the correct range is given and I ping to the internal server, but any other type of access as Server terminal server. Ping to server ip from the inside is answered by interface router public ip instead of the internal server and I don't know if it's this way. There isn't any ACL applied.

    Crypto ipsec debugging I see this error when I do the server terminal server:

    % CRYPTO-4-RECVD_PKT_NOT_IPSEC: Rec'd package not an IPSEC packet. (ip) vrf/adr_dest = / public-ip, src_addr = 172.16.73.4, prot = 6

    Here is the configuration associated with vpn:

    crypto ISAKMP policy 10

    BA aes 256

    preshared authentication

    Group 2

    !

    Configuration group customer isakmp crypto VPN_Clients

    Cisco key

    DNS 4.2.2.2

    pool - vpn clients

    ACL 101

    netmask 255.255.255.0

    !

    !

    Crypto ipsec transform-set RIGHT aes - esp esp-sha-hmac

    !

    Crypto-map dynamic dynmap 10

    Set transform-set RIGHT

    market arriere-route

    !

    !

    card crypto mymap client authentication list userlist

    Group card crypto mymap isakmp authorization list

    client configuration address map mymap crypto initiate

    client configuration address map mymap crypto answer

    map mymap 10-isakmp ipsec crypto dynamic dynmap

    !

    !

    ! Gateway for the default internal resources

    interface Vlan72

    IP 172.16.72.1 255.255.255.0

    no ip proxy-arp

    IP nat inside

    IP virtual-reassembly

    !

    Kind regards.

    VPN client IP local pool 172.16.73.2 172.16.73.10

    !

    !

    interface Dialer1

    the negotiated IP address

    IP mtu 1492

    NAT outside IP

    IP virtual-reassembly

    encapsulation ppp

    Dialer pool 1

    Dialer-Group 1

    Authentication callin PPP chap Protocol

    PPP chap hostname XXXXX

    PPP chap password 7 XXXXXXXX

    accept dns ipcp PPP

    PPP ipcp address accept

    No cdp enable

    crypto mymap map

    access-list 101 permit ip 172.16.72.0 0.0.0.255 any

    !

    Hi Anotino,

    Problem seems to be with the NAT configuration on the router. The NAT config is now below:

    access-list 1 permit 172.16.72.0 0.0.0.255

    NAT_WAN1 allowed 10 route map

    corresponds to the ip address 1

    match interface Dialer1

    IP nat inside source overload map route NAT_WAN1 interface Dialer1

    We need to change it to look like this:

    access-list 100 deny ip 172.16.72.0 0.0.0.255 172.16.73.0 0.0.0.255

    access-list 100 permit ip 172.16.72.0 0.0.0.255 any

    NAT_WAN1 allowed 10 route map

    corresponds to the IP 100

    IP nat inside source overload map route NAT_WAN1 interface Dialer1

    This should make sure to go to the pool of clients VPN traffic United Nations concerns and therefore, you should be able to access the network using the private IP (172.16.72.2 for example).

    Try this and tell me if this solves your problem.

    Kind regards

    Assia

    Post edited by: Assia Ramamoorthy small correction in the post!

Maybe you are looking for