HR4110 and Cisco EasyVPN

Good morning,

I am attempting to configure a Sarian HR4110 to connect to Cisco EasyVPN server.

I’ve followed the instructions on how to do this from the web site which details how it works connecting to a PIX. In my situation I’m using a IOS router (2911). I’ve also changed the destination from to our own internal subnet of

My problem is that the tunnel comes up and all seems to be well but the Sarian is not allocated an IP address from the local pool. Correction, it is allocated an IP but I no route is created to it on the Cisco device.

In addition. A device attached to the Sarian cannot access a device on the Cisco side but can access the internet.

The EasyVPN server is already servicing a number of clients and is working as expected so I’m fairly sure that it’s configured correctly.

The analyser trace is attached.

Could anyone offer any advice?

Thanks a million,



The device is receiving the IP address and then discarding it. It is then using the IP address of the subnet which in my case is


I figured this out so I’ll post the answer in case anyone else needs it.

On the Cisco side the configuration needs to have the network mask of otherwise the Sarian will attempt to take the entire block.

My config now is like this:

crypto isakmp client configuration group
pool SDM_POOL_1
acl 104

Hope it helps someone.