Cisco ASA cannot ping across Site-to-Site VPN
Posted on 2008-10-21
I'd appreciate if you can help for this common scenario and issue.
Cisco ASA 5510 (192.168.1.0/24) and Cisco ASA 5505 (192.168.2.0/24) have been setup successfully and L2L VPN established. It has been working for months.
Recently, I realized that the ping is actually not working through ASA CLI. Meaning that telnet to Cisco ASA, I then ping some private IP address on remote site, like 192.168.2.51, or 52, or 53 or vice versa (192.168.1.51, 52, 53). it shown 0% successfully meaning fail to ping. It is only working if I use a computer, then ping remote IP.
Cisco ASA itself cannot ping across remote machine IP via L2L VPN. However, it can ping any local machine IP.
Any idea? Is it normal by design?