Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

strange vpn problem

HI, i have a strange problem.i have two locations loc1 and loc2. now i have a site-to-site vpn connection between loc1 and loc2 . for vpn i am using pix 6.3v on both sides.On loc2 pix i have 1 interface for outside other is for inside and on the third interface i am connected to other customer with the help rtr. the fig is given below. now from loc2 i am able to reach cutomer lan . but when i am connected thrgh site-to site vpn and try reaching to customer lan from loc1 , i am able to reach only upto the serial interface of the 1841 rtr.

loc1lan-->pix1<--->pix2<--->rtr1600<---->rtr1841(IOSFW)<---customer lan


Re: strange vpn problem

check routing end-end

check NAT (or no-NAT)

"show cry isa sa" = QM_IDLE ?

"show cry ipsec sa" shows packets encrypted & decrypted?

New Member

Re: strange vpn problem

what is the network of the customer lan? Is there an access list for that network? Did you add a statment to except it from nat?

CreatePlease login to create content