Re: ER-Pro L2TP - VPN Clients Can't Ping Network After 1.8.0 to 1.9.0 Upgrade

Hi, and sorry for not being clear on the first post.  Answers to your questions:

1.  Here's a better description:

- There's a file server on 192.168.120.60

- VPN user connects and receives an IP of 192.168.120.40

- VPN user cannot ping or access 192.168.120.60

- VPN user _can_ ping and access the router at 192.168.120.1

- Router can ping 192.168.120.60

So, yes - your statement is correct.  VPN clients cannot reach hosts in the 192.168.100.0/24 network.

2.  VPN and network clients can both reach WAN (this is actually an improvement in 1.9.0; previously on 1.8.0 VPN clients would need to disable remote gateway or there would be considerable packet loss)

3.  I can't test this now, since it's in use.  I'll need to wait until after business hours.

4.  Output of "show interfaces" below:

[user]:~$ show interfaces                                              
Codes: S - State, L - Link, u - Up, D - Down, A - Admin Down                    
Interface    IP Address                        S/L  Description                 
---------    ----------                        ---  -----------                 
eth0         [WAN 1]/24                        u/u  Internet - WAN - Verizon    
eth1         [WAN 2]/24                        u/u  Internet - WAN 2 - Cox      
eth2         192.168.100.1/24                  u/u  Local - Default             
eth2.111     192.168.111.1/24                  u/u  VLAN_111 - Office           
eth2.120     192.168.120.1/24                  u/u  VLAN_120 - Management       
eth2.140     192.168.140.1/24                  u/u  VLAN_140 - Music            
eth2.190     192.168.190.1/24                  u/u  VLAN_190 - Guest            
eth3         -                                 u/D                              
eth4         -                                 u/D                              
eth5         -                                 u/D                              
eth6         -                                 u/D                              
eth7         -                                 u/D  eth7                        
l2tp0        10.255.255.0                      u/u  User: [VPN user]                
                                                    (192.168.120.40)            
lo           127.0.0.1/8                       u/u                              
             ::1/128                                                            

5.  Output of show ip route below:

[user]:~$ show ip route 
Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP                  
       O - OSPF, IA - OSPF inter area                                           
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2           
       E1 - OSPF external type 1, E2 - OSPF external type 2                     > - selected route, * - FIB route, p - stale info                        
IP Route Table for VRF "default"                                                
S    *> 0.0.0.0/0 [1/0] via [WAN 1 IP.1], eth0                                   
     *>           [1/0] via [WAN 2 IP.1], eth1                                  
C    *> 10.255.255.0/32 is directly connected, l2tp0                            
C    *> [WAN2 GW]/24 is directly connected, eth1                             
C    *> [WAN1 GW]/24 is directly connected, eth0                              
C    *> 127.0.0.0/8 is directly connected, lo                                   
C    *> 192.168.100.0/24 is directly connected, eth2                            
C    *> 192.168.111.0/24 is directly connected, eth2.111                        
C    *> 192.168.120.0/24 is directly connected, eth2.120                        
C    *> 192.168.120.40/32 is directly connected, l2tp0                          
C    *> 192.168.140.0/24 is directly connected, eth2.140                        
C    *> 192.168.190.0/24 is directly connected, eth2.190                    

Any help would be great.  Thank you.