Problem with VPN between SA520 and RVS4000

Unanswered Question
Apr 30th, 2010
User Badges:

Hello,


I have two remote sites interconnected through a IPSEC VPN. The topology is joined to this message thus the VPN config of the routers.


The VPN tunnel is up and I can ping or access to the computers which are on Site B from Site A. But if I try to access to computers which are on Site A from Site B, I can't.


I try to determine why with some ping, I can ping the RVS4000 (192.168.0.1) from Site B but I can't ping 192.168.0.9 an 192.168.0.99.


I don't understand why the traffic is possible only in one way.


Does someone can help me to determine where the traffic is blocked?


Sincerely

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Julien Paleni Fri, 04/30/2010 - 12:00
User Badges:

I forgot one precision: the ping from site B to site A return "Request timed out".


In my opinion, there is one firewall (SA520 ou RVS4000) which block the request. There is no firewall on 192.168.0.9 and 192.168.0.99 because this is an network camera (cisco wvc210) and a NAS Synology.

biraja Mon, 05/03/2010 - 09:57
User Badges:

Hi Julien,


Can you check if you have un-checked the "Block ICMP Notification" and " Block PING to WAN interfaces" in Firewall->Attacks section?


Thanks,

Biraja

Julien Paleni Mon, 05/03/2010 - 11:12
User Badges:

Hi Biraja,


I try your modifications but they don't change anything so i re-activate them.


I have down and re-up the VPN tunnel and now i can communicate from A to B and from B to A.


I can't explain why i have encountered some problems but now it works well.


Thanks for your help

Actions

This Discussion

Related Content