I'm hoping someone will be able to help me figure out an issue that I'm having. I'm sure it's something simple that I'm missing. What I have is a site to site vpn tunnel between a Cisco 2801 and a Cisco 1841 router. The tunnel itself is up and running without a problem. My issue is that I am unable to get traffic across the tunnel between the two sites. For instance, I try to ping a computer in Site B from Site A and I get no response. Try to run a tracert in Windows and it drops off at the router and goes no where.
Any ideas on what I may be missing? I know the configuration information will help so let me know which pieces you'll need to see for that.
Check the ISAKMP first phase "sh cry isa sa" and second phase "sh cry ipsec sa"
* Assuming you use preshared key, make sure the remote VPN peer IP address and key match between two VPN device configuration * Check the Phase 1 VPN tunnel up/down status between two sites. In Cisco equipment, you can issue the show crypto isakmp sa command or feature which will show the up/down tunnel status between local VPN peer IP address and remote VPN peer IP address. * Issue simple connection test to the remote site (the remote VPN peer IP address) such as ICMP ping and traceroute (whenever possible) * Reboot one or both VPN devices sometime might solve VPN connectivity issue
* Make sure the data source and destination IP addresses or subnets match the regulating access list * Check the data passing process between the two sites. In Cisco equipment, you can issue the show crypto ipsec sa command or feature which will show the SA (Security Association) between encrypted traffic (outgoing data) and decrypted traffic (incoming data)
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...