LAN to LAN IP Sec Tunnel

Unanswered Question
Aug 5th, 2009

Hi we have configured a LAN-LAN ipsec VPN between Checkpoint and PIX. We have not natted our end LAN with any IP. But on PIX its observed that tunnel is getting formed with LAN as well as with the peer IP. We see two assosiations happening and we cant access LAN behind PIX through VPN ...

Any body observed this issue before ?? What can be the problem ?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
sziaulla Wed, 08/05/2009 - 13:26

what is the ACL looks like on PIX?

ACL on both peers should be mirror image to each other.

when you initiate the ping from PIX side LAN, do you see encrypt counter incrementing on the pix?

Similarly when you initiate the ping from Check point side do you see encryption counter incrementing?


This Discussion