Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
683
Views
0
Helpful
3
Replies

I can ping but can't telnet or access the applications over gre with ipsec

san_dec21
Level 1
Level 1

‎02-18-2008 09:00 PM - edited ‎03-03-2019 08:46 PM

Thanks in advance

One of my customer side iconfigure a network such as below

Lan-----router----firewall---internet---firewall---router----lan

I configure gre tunnel betweeen two routers and protect that tunnel with the help of ipsec over the internet cloud.

I can ping web server but can't telnet to web server or access the web server.

Labels:
0 Helpful
3 Replies 3

dongdongliu
Level 1
Level 1

‎02-18-2008 09:07 PM

are the port 23 and 80 both allowed on the router and firewall?

0 Helpful

eyad_alnaqi
Level 1
Level 1

‎02-18-2008 11:41 PM

When you configure GRE over IPsec, you'll need to allow a number of ports in your two firewalls. For more info you can refer to Cisco's doc QL-9023-01 Chapter 2 (Firewall considerations).

I'm facing a similar problem using the following topology:

LAN - Router - p2p leased line - Router - LAN - Firewall - External network

The end users on left can ping but cannot access the server on the right-hand-side LAN although the firewall is beyond their destination!

Regards,

0 Helpful

royalblues
Level 10
Level 10
In response to eyad_alnaqi

‎02-19-2008 12:23 AM

Seems to be an MTU issue...

have a look at this link

http://www.cisco.com/en/US/tech/tk827/tk369/technologies_tech_note09186a0080093f1f.shtml

HTH

Narayan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card