Switchport module within 1800 VPN router

Similar Messages

• How to make a VPN route permanent ?

  I have a VPN between my office and a lab on the east coast and I can use the following command from my Terminal to enable the route in my Leopard Server:
  route add -net 10.48.239.0 -netmask 255.255.255.0 192.168.1.254
  How can I make this a permanent route? At this time if I reboot the server I must get into the Terminal and use the following two lines to make everything work again:
  sudo su
  route add -net 10.48.239.0 -netmask 255.255.255.0 192.168.1.254
  Thanks for any information any of you may have.
  By the way within 6 months I will be doing the same task on a new Snow Leopard Server so if there are differences please feel free to chime in.

  If you're having to manually set VPN routes then you're doing something wrong.
  It isn't clear from your post where you're doing this. You say you set this 'in my Leopard Server', but it's not clear whether that server is the VPN server on the east coast, a server in your office, or another server anywhere else.
  Normally, the VPN server sends out a list of routes the client should use, so knowing the above will help narrow down where your problem lies.

• WD My Book NAS drive, Cisco VPN router and FTP access

  Hello:
  I have a Western Digital My Book World Editon II NAS drive that is connected through a Cisco ASA 5500 VPN router.
  This NAS drive has a service to use it as an FTP server using port 21 as default or other specific port.
  I also have a XP PC in which I installed Filezilla where I am trying to access the NAS files.
  Only problem is that Filezilla apparently connects to the NAS drive but it lists the directory as empty.Changing to Active mode makes no difference.
  Does this sounds like a problem with the VPN configuration?
  Do I have to configure some kind of port forwarding on the VPN router for port 21?
  Or does the VPN router has nothing to do with this problem?
  Thanks for your help

  Would you "Solve" this question please ?

• Accessing device attached to VPN router

  Hi.  We have a VPN router, RV180, that was installed to allow us to access data on a PLC which is physically attached to the router via ethernet cable. We are able to establish a VPN connection from a remote laptop using QuickVPN. However, we cannot figure out how to browse to the PLC using Internet Explorer. The IP address we have for the PLC is identical to an external IP address and our browser simply loads the page from the Internet. How do we browse to the PLC using the VPN connection?
  Thanks
  Mike

  Hello.  If I may reactivate an old string I have a bit of an ironic question.  The Mac connection which seemed so difficult is now the only one that works.  To be clear, The Windows folks can still create a VPN connection.  However, they cannot access the PLC on the other side.  This wasn't obvious when I last posted because we didn't have the correct login info for the PLC so none of us could get in.  Now, my VPN connection allows me to log in to the PLC.  The Windows VPN connection cannot see the PLC log in page.  Can anyone suggest some areas to check in the administration pages of the router to find the difference between the PPTP protocol which works and the QuickVPN protocol which doesn't?
  Mike

• How to implement Failover in VPN Router

  Hi Everyone,
  I have got Cisco 3845 VPN router which is currently running in our network. We have purchased one more Cisco 3845 router as a standby for VPN router.
  I am planning to make the new router as a secondary router which should be connected on LIVE network. If primary router fails, secondary router should run automatically after certain period of time.
  When i was looking for such kind of solution i came across of Implementing FAILOVER and LOAD BALANCING method for such kind of scenerio. As i am new to this kind of method, so i would suggest some help from the experts out here.
  How do i implement Failover and Load Balancing with my TWO Cisco 3845 VPN router?
  Helping hands are highly appreciated...
  Thanks,
  TashiBDFCL                  

  hi ,
  Please refere below link to get things clear.....
  https://sites.google.com/site/amitsciscozone/home/security/load-balancing-with-2-isps
  thanks

• Internet stops with PPTP VPN connections to ASUS RT-N66U VPN Router

  I have a client with a small office network that has a few people working remotely from Windows 7 and 8 PCs. As an inexpensive solution the client opted to use a VPN router (ASUS RT-N66U) that supports PPTP so remote users could access the shared
  files and SQL DB server. 
  The VPN connectivity for one client was working fine and then stopped working altogether so when the VPN connection is established all Internet and VPN access is stopped. This was especially troubling for me since I work remotely and cannot test or debug after
  the VPN session has been connected. I checked the error logs and found nothing. Also there had been no new programs installed. And finally, I ran a full system antivirus scan with no issues found.
  In case you are facing a similar issue, before trying something remotely that may not work, use the shutdown with reboot command in a COMMAND window and set a timer for something like 3 minutes to reboot in case you get stuck. (e.g. shutdown -r -t 180). 
  Problem: The two symptoms of the VPN connection failure are:
  1) All Internet browsing stops working locally 
  2) No data can pass through the VPN tunnel
  I created a virtual machine on my local network and replicated the client's environment. I experimented with nearly every setting in the VPN dialogue until and came to the final solution. 
  Solution: For the VPN adapter on the remote machines I configured DNS settings and used the remote as the default gateway.
  * VPN adapter Networking IPV4 Properties for:
  - DNS server 1: Main Office VPN Router IP Address
  - DNS server 2: A public DNS server (Google is 8.8.8.8)
  - I also checked the box to "register this connection addresses in DNS"
  Note: Perhaps the local router would also have worked and DNS2 but I didn't test it.
  I have documented this because after reading and searching among many Technical articles and the Microsoft support website, I was unable to find the solution that I came up with so I hope to help someone else. 
  Question1: - Can anyone tell me why the connectivity only works when 'use default gateway on remote network' is checked?
  - I have disabled this option with some business class VPN routers and the connectivity still worked to the remote network but it does not work to the Asus router.
  Question2: From the information provided can I determine where the problem lies?
  Is it the:
  1) Remote client PC
  2) Remote client router
  3) Home office VPN router (Asus RT-N66U)
  If the true culprit cannot be determined yet, what steps do you recommend so I can isolate the true cause of the failure.
  I appreciate any help so that I can be sure my solution is valid and pass along the findings to ASUS if it is their issue.

  Thank you for the suggestion. I have successfully connected through the VPN router when the one client was unable to get VPN throughput working.
  I looked at the routing tables with and without the VPN connection established. The differences are that:
  1) when VPN is NOT active, there is a route from the local NIC IP to the Internet IP address of the local gateway
  destination 68.109.82.xx
  mask 255.255.255.0
  gateway 192.168.0.1
  interface 192.168.0.11
  metric 21
  2) when VPN IS active, the route to the Internet IP address of the local gateway is deleted and a persistent route to the VPN router local network has been added
  Persistent route:
  destination 192.168.21.0
  mask 255.255.255.0
  gateway 192.168.0.1
  interface 192.168.0.11
  metric 1

• PIX 501 and Linksys VPN Router (WRV200)

  I have inherited a job where we have a Cisco PIX 501 firewall at one site, and Linksys WRV200 VPN Router on two other
  sites. I have been asked to connect these Linksys routers to the PIX firewall via VPN.
  I believe the Linksys vpn routers can only connect via IPSec VPN, so i am looking for help on configuring the PIX 501 to allow the linksys to connect with the following parameters, if possible.
  Key Exchange Method: Auto (IKE)
  Encryption: Auto, 3DES, AES128, AES192, AES256
  Authentication: MD5
  Pre-Shared Key: xxx
  PFS: Enabled/Disabled
  ISAKMP Key Lifetime: 28800
  IPSec Key Lifetime: 3600
  On the PIX i have the PDM installed and i have tried using the VPN Wizard to no avail.
  I chose the following settings when doing the VPN Wizard:
  Type of VPN: Remote Access VPN
  Interface: Outside
  Type of VPN Client Device used: Cisco VPN Client
  (can choose Cisco VPN 3000 Client, MS Windows Client using PPTP, MS Windows client using L2TP)
  VPN Client Group
  Group Name: RabyEstates
  Pre Shared Key: rabytest
  Extended Client Authentication: Disabled
  Address Pool
  Pool Name: VPN-LAN
  Range Start: 192.168.2.200
  Range End: 192.168.2.250
  DNS/WINS/Default Domain: None
  IKE Policy
  Encryption: 3DES
  Authentication: MD5
  DH Group: Group 2 (1024-bit)
  Transform Set
  Encryption: 3DES
  Authentication: MD5
  I have attached the VPN log from the Linksys VPN Router.
  This is the first time i've ever worked with PIX so i'm still trying to figure the thing out, but i'm confident with CCNA level networking.
  Thanks for your help!

  Hi again,
  I believe the pix has a 3des license because of the following parts of the "show version"
  Licensed Features:
  Failover: Disabled
  VPN-DES: Enabled
  VPN-3DES-AES: Enabled
  This PIX has a Restricted (R) license.
  I've tried reconnecting the VPN tunnel with debugging on the PIX and get the output as shown in the attached file "vpndebug.txt"
  As for the other show commands they give:
  pixfirewall# show crypto isakmp sa
  Total : 0
  Embryonic : 0
  dst src state pending created
  pixfirewall# show crypto ipsec sa
  interface: outside
  Crypto map tag: transam, local addr. 10.0.0.1
  local ident (addr/mask/prot/port): (192.168.1.0/255.255.255.0/0/0)
  remote ident (addr/mask/prot/port): (192.168.101.0/255.255.255.0/0/0)
  current_peer: 10.0.0.2:0
  PERMIT, flags={origin_is_acl,}
  #pkts encaps: 0, #pkts encrypt: 0, #pkts digest 0
  #pkts decaps: 0, #pkts decrypt: 0, #pkts verify 0
  #pkts compressed: 0, #pkts decompressed: 0
  #pkts not compressed: 0, #pkts compr. failed: 0, #pkts decompress failed: 0
  #send errors 0, #recv errors 0
  local crypto endpt.: 10.0.0.1, remote crypto endpt.: 10.0.0.2
  path mtu 1500, ipsec overhead 0, media mtu 1500
  current outbound spi: 0
  inbound esp sas:
  inbound ah sas:
  inbound pcp sas:
  outbound esp sas:
  outbound ah sas:
  outbound pcp sas:
  pixfirewall#
  Thanks again Daniel, i really appreciate your help on this matter.

• Re : Purpose of REROPTS module within FORMS MODULE

  Hai,
  Could U please tell me what is the purpose of REPORTS module
  within the FORMS module.
  Please advice how to invoke the REPORT created in the FORMS
  module from the FORM.
  Thanks,
  Syed Jaleel.
  null

  Oh ! Sorry, I didn't mention it as FORMS 5.0 problem.
  In FORMS 5.0 there is a new feature to create a report for
  database block.
  My question is after creating the report , how can I invoke it
  from that particular form.
  Syed
  Elikem Ansah (guest) wrote:
  : I do not know what exacty you mean, but if you create report
  : modules using ORACLE REPORTS, you can invoke them through a
  menu
  : item in an MDI by using run_product. Get help on run_product
  from
  : the forms help files.
  : Shiek Syed Jaleel (guest) wrote:
  : : Hai,
  : : Could U please tell me what is the purpose of REPORTS module
  : : within the FORMS module.
  : : Please advice how to invoke the REPORT created in the FORMS
  : : module from the FORM.
  : : Thanks,
  : : Syed Jaleel.
  null

• Modules within a Course and Credit for Complete

  I am in the midst of designing CBT courses that will be taken
  by the masses. I was thinking of designing the courses with modules
  within them. There will be some users that will be required to take
  al the modules and others that will required to take less than all
  the modules. With that design in mind, how could I design the
  course so that the users that need to take less than all modules
  can get credit for the entire course and those that need to take
  the entire course get credit as well. The LMS does not allow us to
  assign users to the module level, it only assigns courses to users.
  The only other way I was think was to make each module a Course.
  If anyone has any thoughts or ideas or knows of a function
  within Captivate that allows us to do what we're thinking, that
  would be great. Each of our Captivate courses could have 3 or more
  modules.
  Thanks for your help!

  I don't think you're going to be able to do that with
  Captivate's
  default functionality.
  This is, IMO, ideally done at the LMS level. Terminology
  varies but I
  assume a Course consists of Lessons. Each lesson is a Content
  Package
  (zip file). If it works that way in your LMs, setup two
  courses. Course
  1 has all the modules (lessons) and Course 2 has 'less than
  all the
  modules'. Then assign the course to the appropriate users.
  If, in your LMS, a 'Course' is a content package, then can
  you group
  courses into any other sort of group, then assign users to
  the
  appropriate grouping?
  If you just can't do this in the LMS, then you could do this
  all at the
  lesson level but it'll take more programming power than CP
  provides (I
  think, I'd love to be proven wrong!).
  Erik
  lindy456 wrote:
  > There will be
  > some users that will be required to take al the modules
  and others that will
  > required to take less than all the modules. With that
  design in mind, how
  > could I design the course so that the users that need to
  take less than all
  > modules can get credit for the entire course and those
  that need to take the
  > entire course get credit as well.
  Erik Lord
  http://www.capemedia.net
  Adobe Community Expert - eLearning
  http://www.adobe.com/communities/experts/
  http://www.awaretips.net -
  Authorware Tips!

• 1800 series router - MPLS - VoIP

  I have a customer who wants to implement a VoIP solution on an MPLS network. Will the 1800 series router work in this environment or would they need a different router? If not what would be the minimum router they would need?
  Thanks for the help.

  Cisco 2800 is the minimum. Check this out
  http://www.cisco.com/en/US/products/ps5854/index.html (click on voice for more information)
  The model will depend on how my IP phones who are looking at and SRST support and things like that. If the number of users is more than 250+ you will have to go with 3845 considering growth.
  HTH

• First time vpn router

                     First time with a vpn router and need advice getting everything running with my current vpn provider.
  router: 887vag vdsl2/adsl2+ POTS with 3g.
  question: Do i need to flash the router with dd-wrt?
  Are there any step by step guides you can give for this
  thnx

  Hi again,
  I believe the pix has a 3des license because of the following parts of the "show version"
  Licensed Features:
  Failover: Disabled
  VPN-DES: Enabled
  VPN-3DES-AES: Enabled
  This PIX has a Restricted (R) license.
  I've tried reconnecting the VPN tunnel with debugging on the PIX and get the output as shown in the attached file "vpndebug.txt"
  As for the other show commands they give:
  pixfirewall# show crypto isakmp sa
  Total : 0
  Embryonic : 0
  dst src state pending created
  pixfirewall# show crypto ipsec sa
  interface: outside
  Crypto map tag: transam, local addr. 10.0.0.1
  local ident (addr/mask/prot/port): (192.168.1.0/255.255.255.0/0/0)
  remote ident (addr/mask/prot/port): (192.168.101.0/255.255.255.0/0/0)
  current_peer: 10.0.0.2:0
  PERMIT, flags={origin_is_acl,}
  #pkts encaps: 0, #pkts encrypt: 0, #pkts digest 0
  #pkts decaps: 0, #pkts decrypt: 0, #pkts verify 0
  #pkts compressed: 0, #pkts decompressed: 0
  #pkts not compressed: 0, #pkts compr. failed: 0, #pkts decompress failed: 0
  #send errors 0, #recv errors 0
  local crypto endpt.: 10.0.0.1, remote crypto endpt.: 10.0.0.2
  path mtu 1500, ipsec overhead 0, media mtu 1500
  current outbound spi: 0
  inbound esp sas:
  inbound ah sas:
  inbound pcp sas:
  outbound esp sas:
  outbound ah sas:
  outbound pcp sas:
  pixfirewall#
  Thanks again Daniel, i really appreciate your help on this matter.

• Inbound ACL for public VPN router

  Hi all,
  I have configured our VPN router for access for all our mobile clients. Our private VPN range is going to be 172.16.10.x/24. Do I need to add ACL permit rules for this range on our inbound ACL to all the inside LANs to facilitate access for the VPN users?
  eg int S0/0/0
       ip address 85.x.x.x
       ip access-group 100 in
  access-list 100 permit ip 172.16.10.0 0.0.0.255 192.168.1.0 0.0.0.255
  If I understand things correctly, once the user connects, the VPN is tunnelled as far as the inside of the interface, so traffic passing through the VPN is encapsulated and hence wouldnt appear as a private IP?
  All comments are greatly appreciated.
  Paul

  Sorry  I mean to say you should not edit outside acl for vpn traffic for rest of the things you can do it.
  Thanks
  Ajay

• RV042 not annoucing vpn routes over rip v2

  Problem: RV042 is not announcing a class C VPN route via RIP to other routers. It announces the gateway public address via rip, but not the VPN route.
  I am attempting to use a pair of RV042 as a redundant links between our home office and a branch. The home office and branch is already connected via a T1. Each location also has an additional cable internet connection with public IP address and a cisco 1921 router controlling the traffic.
  The 1921 routers are using OSPF to route traffic over the T1 and have RIPv2 enabled to talk to their local respective RV042s. Here is a description of how the network is set up.
  MainRouter - cisco 1921
     Eth0 - Network is 192.168.41.0/24
               IP address is 192.168.41.20
     Eth0/1 - Network 10.1.1.1 255.255.255.254
              T1 connection to branch router
  MainRV - RV042 v3 with fw 4.2.1.02
     Wan1 - Public IP A X.X.X.X
      LAN- Network 192.168.41.0/24
                IP 192.168.41.11 255.255.255.0
  BranchRouter - cisco 1921
    Eth0/0 - Network is 192.168.46.0/24
                 IP address is 192.168.46.10
    Eth0/1 - Network 10.1.1.2 255.255.255.254
              T1 connection to main router
  BranchRV - RV042 v3 with fw 4.2.1.02
    Wan1 - Public IP B Y.Y.Y.Y
      LAN - Network 192.168.46.0/24
                IP 192.168.46.11 255.255.255.0
  I have established a VPN from BranchRV to MainRV and it passes traffic correctly. My "MainRouter "
  rip database looks like this....
  192.168.41.0/24    auto-summary
  192.168.41.0/24    directly connected, GigabitEthernet0/0
  X.X.X.X/24    auto-summary
  X.X.X.Z/30
      [1] via 192.168.46.11, 00:00:01, GigabitEthernet0/0
  Notice that there is no route to 192.168.46.0/24 in there....
  Now here is the kicker, just messing around, I changed the VPN settings to use subnets 10.0.10.0/24 on MainRV and 10.0.11.0/24 on BranchRV instead of 192.168.41.0/24 and 192.168.46.0/24 respectivly. After I tried that the routes for the 10.0.3.0 were announced via RIP
  Here is what the MainRouter's rip database looked like after I tried that
  10.0.0.0/8    auto-summary
  10.0.11.0/24
      [2] via 192.168.41.11, 00:00:18, GigabitEthernet0/0
  192.168.41.0/24    auto-summary
  192.168.41.0/24    directly connected, GigabitEthernet0/0
  X.X.X.X/24    auto-summary
  X.X.X.Y/30
      [1] via 192.168.41.11, 00:00:18, GigabitEthernet0/0
  What gives? This really looks like a bug to me...
  Anyhow I'm thinking a workaround might be to set up a GRE tunnel across those 10.0.X.X subnets to the other side so I can at least dynamically route traffic accross.... Without the RIP routes being announced I don't have automatic failover!
  Thanks for your help,
     Curtis

  Yes as was explained to me previously.... by Jason Nickle multicast does not cross a site-to-site tunnel.
  That is not what I want to have happen. What I want is for my RV042 to announce it's VPN routes to other routers on the same physical network. Which it currently is not doing.
  Site 1
      Cisco IOS Router X - main router, local network traffic runs across this
       RVO42 X - has VPN link to RVO42 Y at Site 2
  Site 2
    Cisco IOS Router Y - main router, local newtok traffic runs acress this
     RVO42 Y - has VPN link to RVO42 X at Site 1
  The problem is that RV042 Y doesn't tell Router Y that it has a route to Site 1. And RV042 X doesn't tell Router X that it has a route to Site 2. So they are not locally announcing via RIP, the routes they have TO the respective remote sites.
  What I was trying to say in my original post, is that the router will announce VPN routes if the vpn subnets are a class A 10.X.X.X subnet, but it doesn't announce them if they are a class C 192.168.X.X subnet. So what I am doing should be working, however it is not.

• Configure VPN access on a Cisco WRV210 wireless-G vpn router -range booster

  Please help....
  I need to configure a vpn on a Cisco WRV210 Wireless-G VPN Router - RangeBooster, i have five users that are going to connect to a file server. windows and Mac laptops will be connecting. The file server access is all set i just need a step by step document to configure the vpn screens on the router.thanks

  Hi Robert
  You can refer the below link in finding out the exact config to start with.
  do make sure that your Cisco 831 box with the current IOS code installed in it supports the required feature to run the same..
  http://www.cisco.com/en/US/tech/tk583/tk372/tech_configuration_examples_list.html#anchor16
  regds

• IPSec Spoof Detected error on VPN route

  I'm trying to set up a new VPN user/group/policy to replace a flawed old version that used IP addresses from the same pool as the inside VLAN. As of right now I have most things configured but am unable to establish a connection to a service host on the inside VLAN with the new configuration. The old configuration works fine. Other services like RDP are working fine on the new configuration.
  I *thought* that I had everything configured to use the new IP addresses in ACL lists, NAT Excemptions and the like but must have a conflict or missing rule somewhere I can't spot. Using the packet tracer everything works except when I test 192.168.16.x -> 192.168.15.x on interface outside, it says "IPSEC Spoof Detected" as the reason for dropping packets. When attempting to establish the connection there is no errors, just "Built inbound TCP..." followed by "Teardown TCP... SYN Timeout 00:30"
  For the record the 192.168.16.100-150 pool is the correct VPN address pool.
  Once I have it working 100% I'd like to remove the 192.168.15.200-250 pool from the ASDM configuration.
  My configurations:
  : Saved
  ASA Version 8.2(5)
  hostname SEMC-TEST
  enable password D37rIydCZ/bnf1uj encrypted
  passwd 2KFQnbNIdI.2KYOU encrypted
  names
  name 192.168.15.0 192.168.15.0 description Internal Network devices
  ddns update method DDNS_Update
  ddns both
  interval maximum 0 4 0 0
  interface Ethernet0/0
  switchport access vlan 2
  interface Ethernet0/1
  interface Ethernet0/2
  interface Ethernet0/3
  interface Ethernet0/4
  interface Ethernet0/5
  interface Ethernet0/6
  interface Ethernet0/7
  interface Vlan1
  description VLAN to inside hosts
  nameif inside
  security-level 100
  ddns update hostname 0.0.0.0
  ddns update DDNS_Update
  dhcp client update dns server both
  ip address 192.168.15.1 255.255.255.0
  interface Vlan2
  description External VLAN to internet
  nameif outside
  security-level 0
  ip address xx.xx.xx.xx 255.255.255.248
  ftp mode passive
  clock timezone CST -6
  clock summer-time CDT recurring
  dns domain-lookup inside
  dns server-group DefaultDNS
  name-server 216.221.96.37
  name-server 8.8.8.8
  same-security-traffic permit inter-interface
  same-security-traffic permit intra-interface
  object-group service DM_INLINE_TCP_1 tcp
  port-object eq www
  port-object eq https
  access-list outside_access_in extended permit icmp any any
  access-list outside_access_in extended permit ip 192.168.16.0 255.255.255.0 any
  access-list outside_access_in extended permit ip 192.168.15.192 255.255.255.192 any
  access-list outside_access_in extended permit ip 192.168.15.0 255.255.255.0 192.168.16.0 255.255.255.0
  access-list Remote_test_splitTunnelAcl standard permit 192.168.15.0 255.255.255.0
  access-list inside_nat0_outbound extended permit ip 192.168.15.0 255.255.255.0 192.168.15.192 255.255.255.192
  access-list inside_nat0_outbound extended permit ip 192.168.15.0 255.255.255.0 192.168.16.0 255.255.255.0
  access-list inside_access_in extended permit ip 192.168.15.192 255.255.255.192 any
  access-list inside_access_in extended permit ip interface inside interface inside
  access-list inside_access_in extended permit ip any 192.168.15.192 255.255.255.192
  access-list inside_access_in extended permit icmp any any
  access-list inside_access_in extended permit ip any 192.168.16.0 255.255.255.0
  access-list inside_access_in extended permit ip 192.168.16.0 255.255.255.0 any
  access-list inside_access_in remark Block Internet Traffic
  access-list inside_access_out extended permit icmp 192.168.15.0 255.255.255.0 any
  access-list inside_access_out extended permit ip 192.168.15.192 255.255.255.192 any
  access-list inside_access_out extended permit ip 192.168.15.0 255.255.255.0 192.168.15.192 255.255.255.192
  access-list inside_access_out extended permit ip 192.168.16.0 255.255.255.0 any
  pager lines 24
  logging enable
  logging asdm informational
  mtu inside 1500
  mtu outside 1500
  ip local pool VPN_IP_Alt 192.168.16.100-192.168.16.150 mask 255.255.255.0
  ip local pool VPN_IP_Pool 192.168.15.200-192.168.15.250 mask 255.255.255.0
  ipv6 access-list inside_access_ipv6_in permit ip interface inside interface inside
  icmp unreachable rate-limit 1 burst-size 1
  icmp permit any inside
  icmp permit any echo-reply inside
  icmp permit any echo-reply outside
  icmp permit any outside
  no asdm history enable
  arp timeout 14400
  nat-control
  global (inside) 2 interface
  global (outside) 1 interface
  nat (inside) 0 access-list inside_nat0_outbound_2
  access-group inside_access_in in interface inside
  access-group inside_access_ipv6_in in interface inside
  access-group outside_access_in in interface outside
  route outside 0.0.0.0 0.0.0.0 xx.xx.xx.xx 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  http server enable
  http 192.168.15.0 255.255.255.0 inside
  http 192.168.16.0 255.255.255.0 inside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
  crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map outside_map interface outside
  crypto isakmp enable outside
  crypto isakmp policy 10
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  telnet timeout 5
  ssh timeout 5
  console timeout 0
  management-access inside
  dhcpd auto_config outside
  dhcpd address 192.168.15.200-192.168.15.250 inside
  dhcpd enable inside
  no threat-detection basic-threat
  threat-detection statistics access-list
  threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
  ntp server 192.168.15.101 source inside
  ntp server 192.168.15.100 source inside prefer
  webvpn
  group-policy Remote_test_Alt internal
  group-policy Remote_test_Alt attributes
  vpn-tunnel-protocol IPSec
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value Remote_test_splitTunnelAcl
  group-policy Remote_test internal
  group-policy Remote_test attributes
  vpn-tunnel-protocol IPSec
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value Remote_test_splitTunnelAcl
  username StockUser password t6a0Nv8HUfWtUdKz encrypted privilege 0
  username StockUser attributes
  vpn-group-policy Remote_test
  username StockUser2 password t6a0Nv8HUfWtUdKz encrypted privilege 0
  username StockUser2 attributes
  vpn-group-policy Remote_test_Alt
  tunnel-group Remote_test type remote-access
  tunnel-group Remote_test general-attributes
  address-pool VPN_IP_Pool
  default-group-policy Remote_test
  tunnel-group Remote_test ipsec-attributes
  pre-shared-key *****
  tunnel-group Remote_test2 type remote-access
  tunnel-group Remote_test2 general-attributes
  address-pool VPN_IP_Alt
  default-group-policy Remote_test_Alt
  tunnel-group Remote_test2 ipsec-attributes
  pre-shared-key *****
  class-map inspection_default
  match default-inspection-traffic
  policy-map type inspect dns preset_dns_map
  parameters
    message-length maximum client auto
    message-length maximum 512
  policy-map global_policy
  class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect rsh
    inspect rtsp
    inspect esmtp
    inspect sqlnet
    inspect skinny 
    inspect sunrpc
    inspect xdmcp
    inspect sip 
    inspect netbios
    inspect tftp
    inspect ip-options
    inspect icmp
    inspect icmp error
  service-policy global_policy global
  prompt hostname context
  no call-home reporting anonymous
  Cryptochecksum:834543b67beaaa65578d8032d7d272c3
  : end

  Harry,
  I appreciate the reply and apologise for taking so long to respond myself. When trying to connect to the service it still fails, I was using the Packet Tracer as a quicker means of testing.
  However, after further investigation Friday I believe the issue I am having may be with the service itself. It is a specialized device which, after reviewing its routing table has no route for 192.168.16.x addresses. I cannot update this configuration without scheduling a critical downtime hopefully within the next week.
  Again I appreciate the response but unfortunately my issue might not have to do with the VPN configuration at all!