Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

I can ping but can't telnet or access the applications over gre with ipsec

Thanks in advance

One of my customer side iconfigure a network such as below

Lan-----router----firewall---internet---firewall---router----lan

I configure gre tunnel betweeen two routers and protect that tunnel with the help of ipsec over the internet cloud.

I can ping web server but can't telnet to web server or access the web server.

3 REPLIES
New Member

Re: I can ping but can't telnet or access the applications over

are the port 23 and 80 both allowed on the router and firewall?

New Member

Re: I can ping but can't telnet or access the applications over

When you configure GRE over IPsec, you'll need to allow a number of ports in your two firewalls. For more info you can refer to Cisco's doc QL-9023-01 Chapter 2 (Firewall considerations).

I'm facing a similar problem using the following topology:

LAN - Router - p2p leased line - Router - LAN - Firewall - External network

The end users on left can ping but cannot access the server on the right-hand-side LAN although the firewall is beyond their destination!

Regards,

Re: I can ping but can't telnet or access the applications over

Seems to be an MTU issue...

have a look at this link

http://www.cisco.com/en/US/tech/tk827/tk369/technologies_tech_note09186a0080093f1f.shtml

HTH

Narayan

314
Views
0
Helpful
3
Replies