Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN is up but no traffic flows between PIX and Juniper FW

Hi There,

I have configured site-to-site VPN between PIX and Juniper FW; I am checking the VPN link status and it is showing as up when monitoring via ASDM, however I cannot ping or access to the remote site. I am already having 2 ACLs allowing traffic both ways but I am not able to ping or access the remote network!

I noticed one weired thing when checking the pre-shared key through the ASDM, which is that sometimes the pre-shared key keeps changing and I keep forcing it manually to the correct value. I am using ver 7.2(2). But again, please bear in mind that I see the VPN connection as up!

Any clues?

Thanks,

Haitham

1 REPLY
New Member

Re: VPN is up but no traffic flows between PIX and Juniper FW

Hi,

maybe the following info help you

* Use the packet-tracer option.

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807c35e7.shtml

packet-tracer option in the ASA.

ciscoasa#packet-tracer input inside tcp 192.168.1.50 1025 172.22.1.1 http

The most important output of the packet-tracer command is the last line, which is Action: allow.

* Most Common IPSec VPN Troubleshooting Solutions

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml

232
Views
0
Helpful
1
Replies
CreatePlease login to create content