VPN working, but they can't ping our internal network
We have the following VPN path setup with an outside vendor:
[them]----[internet]----[o
The VPN (ipsec) tunnel has been established and they can ping our firewall box, and we can ping them, but they can't ping anything past the firewall. They're trying to ping an internal networked printer but get timed out. I can ping to theirs just fine.
Since they can ping the firewall itself, I'm assuming something is holding it up at the domain controller level. What do I need to check to allow them to ping internal machines?
Kevin
[them]----[internet]----[o
The VPN (ipsec) tunnel has been established and they can ping our firewall box, and we can ping them, but they can't ping anything past the firewall. They're trying to ping an internal networked printer but get timed out. I can ping to theirs just fine.
Since they can ping the firewall itself, I'm assuming something is holding it up at the domain controller level. What do I need to check to allow them to ping internal machines?
Kevin
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Is there an echo in here? ;)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes, the box is the the default gateway, but he can't ping any machine even if it is configured with the default gateway.
-Are the subnets different ? The 2 LAN's should be.
-Are "they" pinging the LAN or the WAN IP of the firewall ?
-perhaps as asked earlier if you could provide more information as to the VPN configuration such as hardware make and model, and the client you are using, we could better assist.
-Are "they" pinging the LAN or the WAN IP of the firewall ?
-perhaps as asked earlier if you could provide more information as to the VPN configuration such as hardware make and model, and the client you are using, we could better assist.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Did you ever add an access-list? It was the first suggestion and a very common issue with VPN connectivity issues.
ASKER
The problem "fixed itself", althought I didn't do anything (guessing it might have been something on their end after all). I didn't use any of the answers above, but did learn some things so I'm gonna split up the points to everybody if that's cool.
Thanks. Glad it resolved.
Glad I could be of assistance. Thanks!
Thanks ksmithscs,
--Rob
--Rob