We have just made two tunnels with 22.214.171.124 and 126.96.36.199 and its activated but we have created access list to exempt the traffic but seems it's some missing or wrong in the configuration. We want to exempt only 172.17.80.247 machine from both remote sites and the remote local networks are 192.168.10.0, 100.0, 200.0, 50.0, and 51.0. From both sides, the networks are not able to contact with each other. The config file is attached.
Hi, What I want that is,one of the server (172.17.80.247) which is not a part of FW V-lan, its a part of Switch V-lan and that switch is directly connected with one of the interface intf2 of the FW. I have created two tunnels with remote sites which are 188.8.131.52 and 184.108.40.206 and when I execute this command sh isakmp then its shows both tunnels are activated, it means there is no issue with the configuration of Tunnels but I have created access rules for remote Network so that the macine (172.17.80.247) and remote network traffic can be exempted but I dont know whts wrong in the configuration due to which both remote and local networks are not talking with each other.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...