site to site vpn ping

Posted on 2013-07-01
Last Modified: 2013-09-05
I created a VPN tunnel using ipsec between rras 2008 and a sonicwall.  tunnel comes up fine but i cant ping devices on either network.

i setup static routes as follows but it did not make a difference.


dest: remote network

sm: /24

gw: remote ip of vpn gw

I am not sure if this is relevant but when i enable nat the tunnel doesnt come up.  Hopefully someone can point me in the right direction.  Thanks
Question by:Kylo Ren
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 20

Expert Comment

ID: 39292668
As a part of the setup you would normally have to define what networks are accessible via the tunnel, at each end. Did you do anything like that?

Author Comment

by:Kylo Ren
ID: 39292765
yea definetly.  Before i installed the static routes i created a ip sec policy similar to the example below.

Local GW: Public IP
Local Subnet:
Remote GW: Public IP
Remote Subnet:

Tunnel appears to be fine (ike phase 1&2 SA's are visible) but no matter i can't route any traffic through it.
LVL 20

Expert Comment

ID: 39292837
If you have the option, I would change the subnet on one end from the 192.168.x.x to one of the other non routable ranges (10.0.x.x or 172.16.x.x.).

Author Comment

by:Kylo Ren
ID: 39292846
ok no furtunately i dont have that option so is there a work around? anything that i can test for to see where the issue lies?
LVL 20

Accepted Solution

carlmd earned 500 total points
ID: 39292886
Try running a traceroute and see how far it gets.

Also, take a look at the following to insure you configuration is correct.

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
Resolve DNS query failed errors for Exchange
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor ( Top Charts is a view in which you can set seve…

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question