Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
805
Views
0
Helpful
0
Comments

Remote access issue - a device is blocking between the client and the outside PIX interface

TCC_2
Level 10
Level 10

on ‎06-22-2009 05:10 PM

Core issue

Intermediate device is blocking IPSec traffic between the client and the PIX.

Resolution

Perform the following steps.

  1. Issue the show crypto ipsec sa command.
  2. Identify your connection entry.
  3. Check the encrypt and decrypt counters.

If you see no decrypts, there could be a firewall and or packet filter device blocking protocols 50 (ESP) or 51 (AH) between the client and the outside PIX interface.

If you see decrypts and no encrypts, there could be a routing issue on the PIX. Verify that there is a default route set on the PIX, and check the routing table on the PIX. If the problem persists, open a service request at the TAC Service Request Tool.

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents