Cisco Router/Firewall 

Can ping from the router but not from inside computers
 Can't access the VPN client in the LAN after establishing Cisco VPN client
 Can’t connect two Fiber Converters via Cisco 3548 Switches
 Can’t connect two Cisco Catalyst 3548 XL Switches in fiber-optic network
 Can't login Cisco Web VPN
 Can’t ping remote ASA from NetVanta router – Case Study
 Cannot access web site from the LAN
 Cisco Routing Issue - Case Study
 Cisco VPN client cannot access any remote resources
 Different port-map and NAT
 How to delete VPN session
 How to enable SSH on Cisco PIX 5xx
 How to forward port to private IP on Cisco Router 831
 How to enable outside access to PIX 515
 Issue with NAT in Cisco 831
 VPN between ASA 5510 and NetVanta 2054 - Case Study
 Windows 2003 cannot access remote network using Cisco VPN

Can ping from the router but not from inside computers

Causes: 1. Missing ip nat inside for the private interface;
2. Missing ip nat outside for the public interface;
3. Missing ip nat inside source # interface E1 overload.

 For consultants, refer to case 083104RL

Can't access the VPN client in the LAN after establishing Cisco VPN client

For the security reason, Cisco VPN client disables LAN access by design. If you wish to allow other machines on the local LAN to talk directly to the machine which has established a VPN. This can be done by clicking the options button of the Cisco VPN client>Properties and checking Allow Local LAN access.  For consultants, refer to case 091404CS.

Cisco VPN client cannot access any remote resources

Symptom: You are using Cisco VPN client to establish VPN connection on Cisco PIX. The PIX assigns ip 192.168.1.1 but you can't ping LAN ip like 10.0.0.10.

Cause: The PIX need nat inside command line. For consultants, refer to case 110504RL.

Different port-map and NAT

port-map is for re-map ports while NAT is for port-forwarding.

For consultants, refer to case 083104RL

How to delete VPN session

Symptoms: We have PIX 515 running as VPN server. We would like to know how to delete the VPN session. From Device Manager, We can see the session but on option to delete it.

Resolutions: you can use clear command-line to delete the VPN session, for example, clear ipsec sa peer x.x.x.x.

How to enable SSH on Cisco PIX 5xx

Add this command line: SSH ip mask outside

How to forward port to private IP on Cisco Router 831

Assuming the private ip is 192.168.1.2 and Ethernet1 is outside port, add the following command line.

ip nat inside source static tcp 192.168.1.2 port # interface Ethernet 1 port #

For consultants, refer to case 090304RL

How to enable outside access to PIX 515

Do http x.x.x.x y.y.y.y outside for PDM, and telnet x.x.x.x y.y.y.y outside for telnet. Note: x.x.x.x is IP address and y.y.y.y is subnet mask.

or go to PDM>Configuration>Administrator>PDM/HTTPS, add hosts/networks.