Solved

Cisco Site to Site VPN only connecting one way?

Posted on 2014-10-29
3
349 Views
Last Modified: 2014-10-30
Good Morning Experts,

I have a problem and I am hoping you can help me.  I am not a cisco person but am getting through and figured out a lot so far, but I am stuck.

We set up a Site to Site VPN through Cisco Asdm to what will be our cloud site.  From our internal network, I can ping the private ip address to our server which is on the cloud.  From the cloud server I cannot ping anything back on our internal network.  I feel like something is still blocked?

Have we done everything on our end to make this work?

I am not sure what else I am missing or where to look.  Any advice is appreciated.

We are on version 7.1.

Thank you,

Karen
0
Comment
Question by:klsphotos
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 30

Accepted Solution

by:
Predrag earned 500 total points
ID: 40410883
I can ping the private ip address to our server which is on the cloud
Since ping can go to remote server and back I can assume that tunnel, route and encryption are OK. If any of those are not OK you wouldn't be able to ping private address.
I feel like something is still blocked?
My guess is that you block access on your side. Check your ACL.
Also do traceroute to cloud server to be sure that path is OK (that it is not address from some other part of your network). :)
0
 

Expert Comment

by:dhuff2012
ID: 40410919
This sounds like an access-list issue to me. Can you post your access-list?
0
 

Author Comment

by:klsphotos
ID: 40414132
Thank you everyone it was in the ACL list.  I am able to connect and added the system to the domain successfully :)  I am having a issue promoting the server to domain controller but I will post that in another thread.

Thank you so much.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
Let’s face it: one of the reasons your organization chose a SaaS solution (whether Microsoft Dynamics 365, Netsuite or SAP) is that it is subscription-based. The upkeep is done. Or so you think.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question