We ceated a vpn tunnel between our headoffice and a remote branch. We can ping the outside interface of the remote branch pix and vice versa. The problem we have now is we can't ping the remote branch's subnet.
Here are the configs we're using on the headoffice firewall.
crypto ipsec transform-set Fiji esp-3des esp-sha-hmac
crypto map bsp002 7 ipsec-isakmp
crypto map bsp002 7 match address 170
crypto map bsp002 7 set pfs group2
crypto map bsp002 7 set peer 188.8.131.52
crypto map bsp002 7 set transform-set Fiji
crypto map bsp002 7 set security-association lifetime seconds 3600 kilobytes 8000
isakmp key ******** address 184.108.40.206 netmask 255.255.255.255 no-xauth no-config-mode
access-list 170 permit ip 192.168.32.0 255.255.255.0 192.168.45.0 255.255.255.0
It's the same network. We only want the remote branch subnet to have access to the headoffice subnet.
What are missing out? Pls help.