Site-to-Site IPSEC

Unanswered Question
Sep 18th, 2007

Hello, experts


I'm a new gay with IPSEC and I have a problem...


I have configured site-to-site IPSEC and the tunnel is up, but I have no acces between two internal networks(defined as interesting traffic).

There is a point-to-point connection between me and local ISP. I have /29 network routed to my network. I'm using loopback interface with /32 address from that network for peer configuration (there is the crypto map command). I can ping it from outside.



When I'm using extended ping with source address - my internal address ip address - I can ping host from interesting network, but only from local router.

When I'm trying to ping from internal host - the packets do not enter in the tunnel (sh crypto ipsec sa - sent packets counter doesn't increment).

When host from remote network try to ping local host it receives "Request time out", but received packet counter increments.

I put static route to remote network through loopback interface..


Thank you!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion