Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
600
Views
0
Helpful
6
Replies

L2L tunnel is up but can not ping peer IP

Go to solution
mahesh18
Level 6
Level 6

‎02-20-2016 08:53 AM - edited ‎03-12-2019 12:21 AM

Hi Everyone,

L2L tunnel is up between two sites traffic is passing but i can not ping the peer ip?

Need to know how can i make ping work from my end?

Regards

MAhesh

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP
In response to mahesh18

‎02-21-2016 12:31 PM

Then you need to contact the administrator of the remote box, or if you are the administrator you need to check the access rules applied to the internet facing interface.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful

Go to solution
Marius Gunnerud
VIP
VIP
In response to mahesh18

‎02-21-2016 12:52 PM

I don't know what your configuration is so I can not comment on if it is correct or not.  Pinging the remote peer IP should not go throught the VPN tunnel. If you are unable to ping it from the ASA then there is an access rule denying ping on the remote peer IP.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Marius Gunnerud
VIP
VIP

‎02-20-2016 01:00 PM

When you say you can not ping peer IP, do you mean the actual peer IP to which the VPN tunnel is terminating or the remote LAN IPs?

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
mahesh18
Level 6
Level 6
In response to Marius Gunnerud

‎02-20-2016 05:21 PM

when i do sh crypto isakmp sa and see the peer ip i mean that IP.

Thats the ip i can not ping.

0 Helpful

Go to solution
Marius Gunnerud
VIP
VIP
In response to mahesh18

‎02-21-2016 12:31 PM

Then you need to contact the administrator of the remote box, or if you are the administrator you need to check the access rules applied to the internet facing interface.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
mahesh18
Level 6
Level 6
In response to Marius Gunnerud

‎02-21-2016 12:48 PM

Do you mean to say that config on myside of ASA is good and need to check all the config

on remote ASA?

0 Helpful

Go to solution
Marius Gunnerud
VIP
VIP
In response to mahesh18

‎02-21-2016 12:52 PM

I don't know what your configuration is so I can not comment on if it is correct or not.  Pinging the remote peer IP should not go throught the VPN tunnel. If you are unable to ping it from the ASA then there is an access rule denying ping on the remote peer IP.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
mahesh18
Level 6
Level 6
In response to Marius Gunnerud

‎02-21-2016 01:03 PM

Thanks Marius I got it now.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card