The PC in an office is directly connected to the USG2220 through the Secoway VPN Clientz for L2TP VPN connection. The client dial-up is successful, but the user cannot access intranet resources. Network topology:
1. Check the dial-up on the PC. The IP address and mask are obtained.
2. Check the LNS configuration. The IP address in the address pool of the VT interface and the intranet interface are on the same network segment.
ip address 192.168.1.1 255.255.255.0
ip pool 192.168.150 192.168.1.254
3. Modify the address pool to ip pool 1 18.104.22.168 22.214.171.124. The client re-dials and the LNS intranet resources are accessible.
The address pool configured on the LNS is on the same network segment as the intranet. IP address conflict occurs during the dial-up, making the LNS intranet inaccessible.
During the L2TP dial-up, you are advised to configure the LNS address pool as a network segment that is different from any intranet network segments to avoid IP address conflict.