Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
3
Replies

ASA5510 -> Pix 506e with two lans on different subnets - can't get working

SimonSteed
Level 1
Level 1

‎10-13-2006 11:38 AM - edited ‎02-21-2020 01:14 AM

Hi,

We have a pix 506e which is working fine for client side vpn access to our network (192.168.10.x).

We now have a new site (192.168.20.x) and bought an ASA5510 to get a secure tunnel between the two sites. Although we have a tunnel established, we cannot ping from either end to the other network.

Unfortunately none of us are Cisco experts so have been using the guidance of a supplier who's specialist left the company today and us in the *^&%.

Can anyone point me in the right direction as to what we should be looking at - i'm suspecting it's just a routing issue but so far we have not been able to sort it.

I need to get this working ASAP, even if it means working over the weekend which i'm loathe to do unless someone can guide me through :)

Any help appreciated! If you need anymore information, just let me know what you need and i'll post it.

Si

0 Helpful
3 Replies 3

froggy3132000
Level 3
Level 3

‎10-14-2006 03:32 AM

post configs

0 Helpful

SimonSteed
Level 1
Level 1
In response to froggy3132000

‎10-14-2006 08:08 AM

Hi,

Specifically which parts - obviously if I post the entire file, it will compromise the security of the system :)

Si

0 Helpful

jmia
Level 7
Level 7
In response to SimonSteed

‎10-14-2006 11:06 AM

Firstly, if you cannot post the configuration from both devices (taking out any sensitive information) then look at the following document:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00804675ac.shtml

The above document is for a spoke-to-spoke VPN configuration between three PIX devices but you should be only interested in the configuration between PIX1 and PIX2 in the document. I suspect the problem is related with the crypto ACL on the PIX?

Let me know if this helps or you need further help - good luck.

Jay

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card