Is this a back to back setup ? If yes, how are they connected (via ethernet or serial) ? there are issues with MTU and IPSec. if you think MTU is causing the problem, check if there are packets getting fragmented on the initiator side.
If this is not a back to back setup and mtu is giving nightmares then you need to run Path MTU discovery which will find out the maximum mtu allowed in the entire tunnel path priorhand.
Basically the remote site is a 2600 with a dsl card to the INternet.
The main site is a 2600 with a t1 to the Internet, 4 tunnels connect here
In the remote site I have a 2000 server with about 10 dumb terminals and 10 pc's
In the main site has the primary servers, Exchange etc.
Spuratically but everyday, I have issues with Outlook loosing connectivity to exchange, active directory running slow, etc. That being said, I have Telnet applications running all day without issue as well as great ping times.
I have heard the Path discovery feature on 2000 does not work well with Cisco Routers and IPSEC, especially when PPOE is in use.
So my question, should the MTU be manually altered on the server, and if so, on which side, remote or main. Also what is a safe number without affecting other applications.
I know this is probably more of a server question, but..........
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :