cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Communication between Client VPN and IPSec peer subnet

SOLVED
Highlighted
Conversationalist

Communication between Client VPN and IPSec peer subnet

Hello everyone,

I am not sure if this is possible or not. Please guide me either way.

Current scenario:

We have a Meraki MX65 and have configured the following.

1. A site to site vpn with peer local subnet 172.16.1.0/24. (Subnet type IPSec Peer)
2. A SSL client vpn for remote access to the MX65 with subnet 192.168.100.0/24.( Subnet Type Client VPN) 
3. Local LAN with subnet 192.168.200.0/24 ( Subnet Type Local VLAN)

What is working:

1. Local VLAN and IPsec Peer can communicate.
2. User can connect to SSL VPN and access Local VLAN

 

What I want to achieve:

1. User to connect to SSL VPN i.e Client VPN subnet (192.168.100.0/24) and be able to access the resources located in IPSec peer subnet(172.16.1.0/24). 

I hope I am clear enough.

Thank you for all your help and suggestions in advance, Experts.

Regards,

Aashu


1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Kind of a big deal

Re: Communication between Client VPN and IPSec peer subnet

Go to the Site to Site page, and ensure that your client VPN subnet is participating in the site-to-site VPN. 🙂

View solution in original post

2 REPLIES 2
Highlighted
Kind of a big deal

Re: Communication between Client VPN and IPSec peer subnet

Go to the Site to Site page, and ensure that your client VPN subnet is participating in the site-to-site VPN. 🙂

View solution in original post

Highlighted
Conversationalist

Re: Communication between Client VPN and IPSec peer subnet

Hi @Nash ,

 

Thank you for your quick reply and apologies for getting back here little late. 🙃

 

Yes you were right I had to make sure that client VPN subnet was selected to participate in site to site VPN. 

 

I also had to make changes on other end of tunnel to allow that particular subnet on site to site VPN. 

 

This issue has been resolved.

 

Thank you for your help. 

 

 

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.