Solved

Lost connect to external network after creating site to site vpn

Posted on 2011-03-21
5
337 Views
Last Modified: 2012-05-11
I have several machines hosted at an external data center.  I had access to them.  I thn created a site to site vpn to the site and can no longer ping them.  even when I take the site to site vpn out of the asa I cannot get to them.  The asa can still ping the hosts but anything behind the asa cannot.
0
Comment
Question by:dmwynne
  • 3
5 Comments
 
LVL 18

Accepted Solution

by:
jmeggers earned 500 total points
Comment Utility
Is the ASA advertising a route to the inside to get to the servers at the other end?  How were you getting to the servers prior to the VPN tunnel?  Did you change the configuration on the other end and is it possible it's still trying to encrypt the traffic?
0
 
LVL 14

Author Comment

by:dmwynne
Comment Utility
I was getting to the machines via the internet, they all have external ips and I had specific ports open.  I did change the config on the other end.  Currently the site to site is up but I can't get to those external ips at all.

0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
How did you set up the nat0 access-list for the VPN?
Can you paste your relevant config?
0
 
LVL 14

Author Comment

by:dmwynne
Comment Utility
This was a routing issue on the remote side.  Needed to add routes on the remote firewall to the internal networks.
0
 
LVL 14

Author Closing Comment

by:dmwynne
Comment Utility
routing issue on the Juniper end.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now