VPN is up but no traffic flows between PIX and Juniper FW

Unanswered Question
Feb 20th, 2007

Hi There,

I have configured site-to-site VPN between PIX and Juniper FW; I am checking the VPN link status and it is showing as up when monitoring via ASDM, however I cannot ping or access to the remote site. I am already having 2 ACLs allowing traffic both ways but I am not able to ping or access the remote network!

I noticed one weired thing when checking the pre-shared key through the ASDM, which is that sometimes the pre-shared key keeps changing and I keep forcing it manually to the correct value. I am using ver 7.2(2). But again, please bear in mind that I see the VPN connection as up!

Any clues?

Thanks,

Haitham

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ROBERTO TACCON Sun, 02/25/2007 - 04:55

Hi,

maybe the following info help you

* Use the packet-tracer option.

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807c35e7.shtml

packet-tracer option in the ASA.

ciscoasa#packet-tracer input inside tcp 192.168.1.50 1025 172.22.1.1 http

The most important output of the packet-tracer command is the last line, which is Action: allow.

* Most Common IPSec VPN Troubleshooting Solutions

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml

Actions

This Discussion