I can ping but can't telnet or access the applications over gre with ipsec

Unanswered Question
Feb 18th, 2008
User Badges:

Thanks in advance

One of my customer side iconfigure a network such as below


Lan-----router----firewall---internet---firewall---router----lan


I configure gre tunnel betweeen two routers and protect that tunnel with the help of ipsec over the internet cloud.


I can ping web server but can't telnet to web server or access the web server.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
dongdongliu Mon, 02/18/2008 - 21:07
User Badges:

are the port 23 and 80 both allowed on the router and firewall?

eyad_alnaqi Mon, 02/18/2008 - 23:41
User Badges:

When you configure GRE over IPsec, you'll need to allow a number of ports in your two firewalls. For more info you can refer to Cisco's doc QL-9023-01 Chapter 2 (Firewall considerations).


I'm facing a similar problem using the following topology:


LAN - Router - p2p leased line - Router - LAN - Firewall - External network


The end users on left can ping but cannot access the server on the right-hand-side LAN although the firewall is beyond their destination!


Regards,

Actions

This Discussion