Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SA 540 VPN PROBLEM

       10.239.1.0/24                                                                                10.239.2.0/24

               |                                                                                                    |

             --|                                                                                                    |--

               |        +-----------+                /-^-^-^-^--\                  +-----------+        |

               |-----| Cisco 1811 |=======| Internet |=======|   SA  540    |-----|

               |   AL+-----------+AW           \--v-v-v-v-/            BW+-----------+BL   |

             --| 10.239.1.1   202.45.60.1                     202.45.60.2  10.239.2.1 |--

               |                                                                                                    |

hello guys i am fresh in this field. I tried to establish VPN between the 1811 and sa540. The VPN Tunnel is UP but from the Cisco 1811 i cannot ping to SA540 "BW" 202.45.60.2 and "BL" 10.239.2.1 i have defined default route and static route on both devices but from SA540 i can ping to "AL" 10.239.1.1. help on this want to make communication between 10.239.1.0/24 with 10.239.2.0/24.

please provide step by step guide to configure the SA540.

Thank You.

Everyone's tags (2)
1 REPLY

Re: SA 540 VPN PROBLEM

Hi,

Does the tunnel show established on the SA540?

Do you see both phase 1 and phase 2 established on the router?  ''sh cry isa sa'' and ''sh cry ips sa''

A good test (if the tunnel is established) is the following:

PING from the router's internal LAN to the internal LAN of the SA540 and check the ''sh cry ips sa'' for packets encrypted/decrypted. This will give us an idea where to look.

Are you doing NAT also?


Federico.

506
Views
0
Helpful
1
Replies
CreatePlease to create content