Cisco VPN issues connecting to internal HTTPs Services

Unanswered Question
Apr 19th, 2010

Hi Everyone,

We have a current VPN setup in Sydney, Melbourne and Canberra.  Each site has a VPN tunnel to the other site.

Sydney is hosting HTTPs services in the form of web servers.  While Melbourne can connect to https services in Canberra and vice versa, Melbourne and Canberra cannot connect to any HTTPs services in Sydney.  The Melbourne and Canberra site can SSH, Ping and connect to other services however cannot connect to the HTTPs services.  I have turned off all ACLs to make sure this is not the issue and this is not the issue.  With the ACLS enabled or not, cannot connect to the services.

Has anyone see this before?

Thanks.

Tom.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Federico Coto F... Mon, 04/19/2010 - 14:22

Hi,

You have a full-mesh VPN connections between all three sites?

You say there's full connectivity between all sites with the exception of HTTP.

So, can we summarize the problem as not being able to access via HTTP/HTTPS the web server on Sydney from Melbourne and Canberra?

If this is so, is there a tunnel established between both sites and Sydney?

The ACL for encrypted traffic specifies IP traffic between the networks?

Do you see packets encrypted/decrypted when sending HTTP traffic on both ends?  sh cry ips sa

Federico.

Actions

This Discussion