Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 506E connection to Juniper and Symantec

Hi all,

I'm looking for some words of wisdom here... I'm trying to connect a Cisco PIX 506E to a Juniper SSG-5 and a Symantec Gateway 320 via IPSec VPN over public internet, and nothing is happening. I know most people here may not know much about these other two products, but can anyone maybe point me in the right direction, or have any ideas as to why I can't get them to talk?

-Patrick

2 REPLIES
Silver

Re: PIX 506E connection to Juniper and Symantec

Check if you have configured the following properly:

1. Internet Key Exchange (IKE) proposal on both devices.

2. IPsec parameters on both devices.

3. Specify network ranges on both devices for the passage of traffic across the proposed tunnel.

New Member

Re: PIX 506E connection to Juniper and Symantec

Thanks for the suggestions. It turns out it was the rule order; I had a general 'allow' policy above the 'tunnel' policy on the other device, so it was trying to send that traffic unencrypted, and the packets with private IP address destinations were, of course, promptly dropped.

-patrick

112
Views
0
Helpful
2
Replies
CreatePlease to create content