Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
219
Views
0
Helpful
1
Replies

VPN 3005 - Multiple spokes that need to see each other

marcs
Level 1
Level 1

‎04-05-2007 05:56 AM - edited ‎02-21-2020 02:58 PM

I have a VPN 3005 concentrator that has multiple lan-to-lan IPSec tunnels coming into it, some of which need to communicate with one another. I'm having an issue configuring this -- I've got a tunnel gateway configured, which would be the same as the internal lan default gateway. I've also got network lists configured to allow the traffic from one spoke to another but cannot get it to work. Any ideas? Thanks!

Labels:
0 Helpful
1 Reply 1

gmarogi
Level 5
Level 5

‎04-11-2007 06:20 AM

You can try changing the value for tcpmss to see if the problem is with the size of the packets. You can also try the option "Fragment prior to IPSec encapsulation without Path MTU Discovery(Clear DF bit)", it may resolve the problem.

0 Helpful
Customers Also Viewed These Support Documents