02-18-2008 09:00 PM - edited 03-03-2019 08:46 PM
Thanks in advance
One of my customer side iconfigure a network such as below
Lan-----router----firewall---internet---firewall---router----lan
I configure gre tunnel betweeen two routers and protect that tunnel with the help of ipsec over the internet cloud.
I can ping web server but can't telnet to web server or access the web server.
02-18-2008 09:07 PM
are the port 23 and 80 both allowed on the router and firewall?
02-18-2008 11:41 PM
When you configure GRE over IPsec, you'll need to allow a number of ports in your two firewalls. For more info you can refer to Cisco's doc QL-9023-01 Chapter 2 (Firewall considerations).
I'm facing a similar problem using the following topology:
LAN - Router - p2p leased line - Router - LAN - Firewall - External network
The end users on left can ping but cannot access the server on the right-hand-side LAN although the firewall is beyond their destination!
Regards,
02-19-2008 12:23 AM
Seems to be an MTU issue...
have a look at this link
http://www.cisco.com/en/US/tech/tk827/tk369/technologies_tech_note09186a0080093f1f.shtml
HTH
Narayan
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: