VPN Connectivity to an offline server.

Answered Question
Sep 15th, 2009
User Badges:

Greetings All,


I am trying to bring standard site to site vpn connection between two sites. Site A and Site B.


Site A has a server (SeverOne)and site B WILL have a server (ServerTwo).


Now Im trying to bring up the VPN tunnel by pinging at this point a NON-EXISTENT server (ServerTwo) from the ServerOne.


SO the question is will this tunnel come up even though the server at site B is still not online? So far my tunnel is not passing phase 1.


Thanks in advance


Correct Answer by JORGE RODRIGUEZ about 7 years 10 months ago

SO the question is will this tunnel come up even though the server at site B is still not online?


Absolutely.. tunnel should still come up even though the host at other end does not respond.. you still should see phase 1/2 complete, and note in the output of (show crypto isakmp sa) in your firewall tunnel state as QM_IDLE and see peer tunnel address and your tunnel address.. you will only see encrypts but no decryps in the output of (show crypto ipsec sa) when sending pings to a system that is not online ... so if your tunnel makes it as far as phase1 something is wrong , either in your ike policy not matching or peer not responding..




  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
JORGE RODRIGUEZ Tue, 09/15/2009 - 21:23
User Badges:
  • Green, 3000 points or more

SO the question is will this tunnel come up even though the server at site B is still not online?


Absolutely.. tunnel should still come up even though the host at other end does not respond.. you still should see phase 1/2 complete, and note in the output of (show crypto isakmp sa) in your firewall tunnel state as QM_IDLE and see peer tunnel address and your tunnel address.. you will only see encrypts but no decryps in the output of (show crypto ipsec sa) when sending pings to a system that is not online ... so if your tunnel makes it as far as phase1 something is wrong , either in your ike policy not matching or peer not responding..




merryllem Tue, 08/24/2010 - 13:04
User Badges:

I know it's been a year (almost) but thanks.. this was helpfull

Actions

This Discussion