Hello,

Been reading the forum with similar posts like mine but haven't yet figure out a solution.

I have a 2860 that is connected to a layer 3 switch with 3 vlans. On the other side there is a cisco asa with a single subnet.

I have established a vpn connection with the primary subnets but i cannot access the other two from cisco side.

I have added the two remaining subnets to the "more" option on draytek, checked an unchecked the Create phase 2 option but nothing happens.

From my understanding there is no option to add local subnets except the primary on draytek. Remote is if there are multiple remote subnets on the other side.

Any thoughts ?

Thanks.

Anyone ?

I 've read lots of threads with the same problem.

Anyone solved this ?

So, to anyone having the same problem.

I solved mine by using a different subnet mask.

On my ASA: local asa to -> 192.168.20.0 / 255.255.252.0

On my Draytek: 192.168.21.1 / 255.255.252.0 -> to local asa

I am now able to access from asa my three remote subnets,

192.168.21.0/24 , 192.168.22.0/24, 192.168.23.0/24

hope it helps someone.