Internet access for vpn clients

I configured my router following instructions at:

formatting link
The goal of it is to enable VPN clients internet access, but rather trough VPN router's Internet connection then trough split tunneling. After configuration from the article above NAT is working fine, but CBAC does not inspect vpn user's traffic which results in denial of returning traffic. Where should I place CBAC inspect rule for inspection of vpn client's traffic? I tried on a loopback interface in both directions and also on the outside interface as inbound rule, but without success, while traffic from the inside being normally inspected.

Best Regards, Igor

Reply to
Loading thread data ...


formatting link

I run CBAC on the dialer outbound,


interface Dialer0 ip address x.x.x.x ip access-group inbound in ip nat outside ip inspect fwinspect out encapsulation ppp dialer pool 1 dialer-group 1 ppp authentication chap callin ppp chap hostname

Hope this helps Igor, you can get me on

Best of luck and regards from scotland

Reply to
tweety Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.