We have a IPSec VPN tunnel using a PIX and a client's checkpoint. I just added an IP address to allow them to FTP to an internal server but they say its not working. We've had the tunnel and have been routing for a couple years so only the recently added IP address is not working. They can see the packet going and I'm trying to understand the best way to debug this. What debugs should I run to see if the packet is hitting our side?
The logging console debugging command directs messages to the PIX console. If mail is a problem, examine the messages to locate the IP addresses of the sending and receiving stations in order to determine the problem.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...