Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Site-to-Site VPN activity - Does this sound like a hijack?

I have multiple site-to-site VPN's between my PIX515E and outside networks. One, a PIX 501, had network problems for a couple days, then once the ISP fixed the issue, I saw traffic trying to get from my site to theirs, but using a different ISP remote host. I contacted the ISP, but the address is a completely different carrier. It looked like the traffic was being intiated from both sides, but I could only see the log on my side trying to establish a VPN connection with an incorrect peer address. I rebooted the PIX 515E and problem solved.

Does this sound like a hijack of some sort on the PIX501 address?

1 REPLY
Silver

Re: Site-to-Site VPN activity - Does this sound like a hijack?

For Monitoring the Site-to-Site VPN activity refer to the following url to avoid hijack

http://www.cisco.com/en/US/products/sw/cscowork/ps5387/products_user_guide_chapter09186a00801ce378.html#28987

114
Views
0
Helpful
1
Replies