remote vpn try to ping inside network

Answered Question
Jun 28th, 2007

i am using this setup

i cannot ping the inside user from the remote client ?

do you know why ?

I have this problem too.
0 votes
Correct Answer by acomiskey about 9 years 4 months ago


management-access inside

Please rate helpful posts.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
dcoulanges Thu, 06/28/2007 - 10:41

I am at home receive a ip address and i couldnot ping the inside interface of the pix 501(

this the partial of the config( i remove line command for security)

nameif ethernet0 outside security0

nameif ethernet1 inside security100

access-list outside_access_in permit icmp any any echo-reply

access-list 101 permit ip

ip address inside

ip local pool ippool

global (outside) 1 interface

nat (inside) 0 access-list 101

nat (inside) 1 0 0

access-group outside_access_in in interface outside

sysopt connection permit-ipsec

crypto ipsec transform-set myset esp-des esp-md5-hmac

crypto dynamic-map dynmap 10 set transform-set myset

crypto map mymap 10 ipsec-isakmp dynamic dynmap

crypto map mymap client authentication LOCAL

crypto map mymap interface outside

isakmp enable outside

isakmp identity address

isakmp policy 8 authentication rsa-sig

isakmp policy 8 encryption des

isakmp policy 8 hash sha

isakmp policy 8 group 1

isakmp policy 8 lifetime 86400

isakmp policy 10 authentication pre-share

isakmp policy 10 encryption des

isakmp policy 10 hash md5

isakmp policy 10 group 2

isakmp policy 10 lifetime 86400

vpngroup vpn3000 address-pool ippool

vpngroup vpn3000 split-tunnel 101

vpngroup vpn3000 idle-time 1800

vpngroup vpn3000 device-pass-through

vpngroup vpn3000 password ********

Correct Answer
acomiskey Thu, 06/28/2007 - 11:03


management-access inside

Please rate helpful posts.


This Discussion