I have some problem with ipsec configuration. Here is a topology:
I want to create VPNs between LANs so i started co configure vpn from LAN1 to LAN3. The problem is that packets are encrypted only when source (and/or destination) address of ping is the addres of router interface. When i want to ping from host to one of LANs, (ex. on R1: 'ping 22.214.171.124 source 126.96.36.199') im geting a massage:
%CRYPTO-4-RECVD_PKT_NOT_IPSEC: Rec'd packet not an IPSEC packet. (ip) vrf/dest_addr= /188.8.131.52, src_addr= 184.108.40.206, prot= 1
Ping 220.127.116.11 source 18.104.22.168 works fine, and 'show crypto ipsec sa' confims that packets are encrypted, also wireshark confirms encryption.
Lan1: 22.214.171.124 /26
All three LAN interfaces, ale Windows Loopback.
Can someone help me, and tell where i made a mistake ?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...