I have to rebuilt a tunnel from Cisco router to Checkppoint what works, bur now IP addresses changed and we have to use loopback interface with the tunnelendpoint ip address. On the side to public net is frame relay on the serial subinterface. I use the command "crypto map MapName local-address Loopback0" and then I red that I have to confige the "crypto map MapName" on both, the s0 (physical interface) and s0.1 (subinterface).
Now I see that IPSec SAs are established but the Checkpoint do not receive pakets.
1. Is the config of the crypto map right?
2. do I have to route the interesting pakets to loopback or serial interface ?
Since there has been no response to your post, it appears to be either too complex or too rare an issue for other forum members to assist you. If you don't get a suitable response to your post, you may wish to review our resources at the online Technical Assistance Center (http://www.cisco.com/tac) or speak with a TAC engineer. You can open a TAC case online at http://www.cisco.com/tac/caseopen
If anyone else in the forum has some advice, please reply to this thread.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...