Okay so I'm new to this wonderful world of MPLS. I have just set up my first remote site and and the head end. All of the traffic on the internal networks the 172.27.1.0/24 172.27.27.2.0/24 work fine and talk. I have a Pix ASA 5510 which has a VPN to a remote netwokr let's say 192.168.1.0/24. I want the traffic from my remote MPLS network 172.27.30.0/24 to be able to talk with this network also. Is there any big magic I need to perform? I have a route to the network in my local switch. Ihave allowed the .30 network to talk to the 192.168.0.0/24 network via the VPN configuration. Still no Joy.
Correct I have a WAN router at HQ and an ASA 5510 Firewall for internet and VPN's to several remote locations. the default gateway for my MPLS is a layer 3 switch however. This layer 3 switch has a default route to the Firewall for everything it doesn't no about. I put the ACL in my ASA 5510 and put it into my Pix 515e on the other end of the remote site. I did a traceroute and I see it hit the following
MPLS router at site
MPLS network entry
MPLS network exit
Core 3560 Layer three switch for easy 172.27.1.5
times out on the next hope which is 172.27.1.3 for both internet and trying to talk to the remote VPN.
It looks like the ASA is not allowing any traffic from my new subnet
Alright let me first state I do not like the graphical interface first
Half the changes i commited through the interface did not take. After going into the command line on my ASA I found that the CryptoMap's hadn't updated to allow the 172.27.30.0/24 network. Also noticed that even though I had added the 172.27.30.0/24 network to the Nat networks for internet it had not decided it wanted to commit to that one either. SSH worked wonderfully.
I'm not a fan of the Graphical interface for the Cisco firewalls either. I have been burnt before where i thought it was doing something only to find it doing something else. That's why i stick the CLI
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...