IPSEC site-to-site Question

Unanswered Question
Sep 29th, 2009
User Badges:

Hi!


We are getting this:


IPSEC: Completed outbound permit rule, SPI 0xEE01F27D    Rule ID: 0xCC8CDEE0 IPSEC: No user rule added. No intersection between destination source networks (172.18.0.0/255.255.0.0) and (172.30.20.0/255.255.255.0). IPSEC: New outbound user deny rule, SPI 0xEE01F27D


IPSEC: New outbound user implicit deny rule, SPI 0xEE01F27D


It's denying traffic on the SA. What does it mean when it says No intersection between destination source networks? Any help is greatly appreciated!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
dhananjoy chowdhury Wed, 09/30/2009 - 06:54
User Badges:
  • Silver, 250 points or more

Hi,


Did you configure any kind of auth-proxy on the device for outgoing traffic?

If so check if the contents of the auth-proxy ACL doesn't conflict with crypto ACL

Actions

This Discussion