*Newbie* Site to Site vpn problem

Unanswered Question
Jan 15th, 2009
User Badges:

Hi,

I am new to the world of VPN.


I have a 2811 connected via the net to a VPN conncentrator.


Good news is VPN is up and working, 'UP-ACTIVE'.


How do I check that the routing is working? in respect of my LAN packets being recieved by the VPN conncentrator once the VPN tunnels is up and working.


I have a route to the VPN peer - ip route x.x.x.16 255.255.255.255. f0/0

Another route to the remote network on the other side on VPN conncentrator -

ip address 172.16.0.0 255.255.255.0 x.x.x.16.

I have been told the static should have a next-hop of the peer. Is this correct?


How can I check when I try to ping a device it is being encrypted? and reaches the vpn conncentrator

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
marcelnjkoks Fri, 01/16/2009 - 03:47
User Badges:

Issue the command show crypto isakmp SA.

When the encrypt and decrypt counters increase, packet are encrypted.


You can also do a show ACL for the ACL you use to define traffic to encrypt. See if hits are increasing.

Actions

This Discussion