Pix to Pix VPN with no LAN

Answered Question
Jun 22nd, 2008
User Badges:

Same old story, but I've been unable to resolve. Client that we've recently taken over with 501 to 506 VPN but can't access LAN resources from one side to the other. (Ping, browse, telnet...). Both configs attached. Thanks in advance.



Correct Answer by Farrukh Haroon about 8 years 9 months ago

Great to know you have it working now :)


Please rate helpful posts.


Regards


Farrukh

Correct Answer by Farrukh Haroon about 8 years 9 months ago

You have encr/decr on both sides, are you sure BOTH sides cannot access each other?


Regards


Farrukh

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Farrukh Haroon Sun, 06/22/2008 - 22:57
User Badges:
  • Red, 2250 points or more

Can you post the following from both sides after establishing the tunnel and doing a continuous ping:


show crypto isakmp sa

show crypto ipsec sa


Also have a look at:


http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094761.shtml


http://www.cisco.com/en/US/tech/tk583/tk372/technologies_tech_note09186a008009448c.shtml


Regards


Farrukh

Correct Answer
Farrukh Haroon Wed, 06/25/2008 - 05:52
User Badges:
  • Red, 2250 points or more

You have encr/decr on both sides, are you sure BOTH sides cannot access each other?


Regards


Farrukh

cuchara61 Mon, 06/30/2008 - 14:51
User Badges:

Thanks, happs links took care of it. It's always an ACL!! Thanks again guys.

Correct Answer
Farrukh Haroon Tue, 07/01/2008 - 00:12
User Badges:
  • Red, 2250 points or more

Great to know you have it working now :)


Please rate helpful posts.


Regards


Farrukh

kaachary Mon, 06/30/2008 - 09:04
User Badges:
  • Cisco Employee,

Doesnt look like a vpn problem anymore, just make sure the hosts in question do not have a Firewall installed.

Actions

This Discussion