Solved

Vpn Thunnel not allowed to ping either side.

Posted on 2011-03-24
10
304 Views
Last Modified: 2012-05-11
Hello, i created a vpn thunnel between site A and Site B. The thunnel shows to be active but i am not able to ping from either side to the other. The ip address schemes are different. Any ideas what i am missing. Site A is using a sonic firewall for vpn and Site B is using a cisco router.

any ideas what to do next would be great help.
Thanks in advance.
0
Comment
Question by:jamyoung
  • 5
  • 4
10 Comments
 
LVL 5

Expert Comment

by:shubhanshu_jaiswal
ID: 35206858
do you see any logs on the firewall...
0
 

Author Comment

by:jamyoung
ID: 35207000
I check the logs does i not see any logs for that thunnel.
0
 
LVL 5

Expert Comment

by:shubhanshu_jaiswal
ID: 35207457
when you are pinging the host on firewall side from host on router side....did u see any logs on firewall for the host on router side...
0
 
LVL 5

Expert Comment

by:shubhanshu_jaiswal
ID: 35207464
have u specified the interesting traffic on both the side....
0
 

Author Comment

by:jamyoung
ID: 35207876
Yeah when i ping the host i do not see any logs at all. and i have specified the interesting traffic on both sides.
0
Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

 
LVL 5

Accepted Solution

by:
shubhanshu_jaiswal earned 50 total points
ID: 35207937
just filter the logs coming for router end Public ip address on your firewall...
0
 
LVL 13

Expert Comment

by:SIM50
ID: 35208789
Are you allowing ICMP protocol through the tunnel?
0
 

Author Comment

by:jamyoung
ID: 35209819
Honestly dont know. but i have setup other tunnel to other site with no problems on the same firewall router.
0
 

Author Comment

by:jamyoung
ID: 35242794
Problem was resolved turned out i had to modify access-list no_nat extended permit on the cisco side.
0
 

Author Closing Comment

by:jamyoung
ID: 35242811
put me in correct directions but not complete soultion.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Suggested Solutions

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
Using Windows 2008 RRAS, I was able to successfully VPN into the network, but I was having problems restricting my test user from accessing certain things on the network.  I used Google in order to try to find out how to stop people from accessing c…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now