vpn tuneel is working one way

Unanswered Question
Mar 5th, 2008
User Badges:


I have a cisco router and a junper firewall for site to site vpn on both there are multiple tunnels .

Now for the tuneel between the 2 it is working from router to juniper but not from juniper to router

sh cry ipsec sa and iskmp sa in router is ok

How do I trouble shoot

Any help is appreciated


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
massimiliano.se... Thu, 03/06/2008 - 00:50
User Badges:
  • Silver, 250 points or more


The traffic from LAN (Juniper) to LAN (Cisco) is enabled to create an IPSEC SA with Cisco Router. In other words, is it interesting traffic?

I hope this helps,

Best regards.


rajbhatt Thu, 03/06/2008 - 04:07
User Badges:


have initiated a ping from router to juniper .Works great.

But if I ping from juniper to router the tunnel status T1 shows down

What are the possible things I should check other than cryto access lists



This Discussion