troubleshooting Question

Cisco PIX to Cisco 1841 IPSEC VPN issues

Avatar of ogexperts
ogexperts asked on
Internet Protocol SecurityCiscoRouters
11 Comments1 Solution916 ViewsLast Modified:
Dear Experts

My setup is as follows:

HQ:
Cisco PIX 515
Subnet: 172.20.0.0/16

Branch office:
Cisco 1841 router with Advanced Security feature set
Subnet: 172.22.0.0/16


My HQ also has other branch offices connected via MPLS.
Subnets:
172.17.0.0/16
172.18.0.0/16
172.19.0.0/16
172.21.0.0/16
172.23.0.0/16

I have onfigured IPSEC VPN connectivity between the PIX and the 1841 router.

Initially, I configured the PIX and 1841 to only route the connected subnets (172.20.0.0/16 & 172.22.0.0/16) across the runnel and everything was working fine.

Second step, I added 172.19.0.0/16 to also be available across the VPN from my branch office. Everything was still working fine.

Next step, I also added 172.21.0.0/16 to be available from the branch office. That's when my problems started.
Immediately, the VPN tunnel became very unstable. Frequently, the tunnel would go down and no traffic would be routed across.
As soon as I removed 172.21.0.0/16 from the tunnel, it stabilized again.


Are there any limitations in how much traffic the 1841 router can handle, or am I missing something on the configuration?

ASKER CERTIFIED SOLUTION
ogexperts

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 11 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 11 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros