Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We are trying to hit a client's web server by their internal name across a vpn. The name space they are insisting upon using is the same as their public namespace (ex: web1.abc.com). They are not going to publish this 'web1' record to their publi...
Good afternoon,I'm having some trouble getting a site-to-site vpn setup between a pix 515 running 6.3(5) and a sonicwall. We've verified the phase1&2 settings and reset the pre-shared key. On the sonicwall they are getting a message stating that th...
I have a 3640 with a PRI that receives inbound DDR calls. Most of the sites use DDR as a backup to frame circuits. One site is DDR only. But when the Mayfield location dials in, it is assigned the wrong IP address by the PRI router. EIGRP still t...
We have a client with a 3 node frame network and a client based VPN terminating on a 3005. The client is trying to establish a pix-to-pix vpn to one of their clients to support an app on a single host. We've established the VPN's and it works fine....
We got this resolved. Thanks for all of your help. The issue turned out to be that the identity was set to hostname instead of address. We changed that one value on the pix and the tunnel started passing traffic.Thanks again,Chris Smith
This is the messages they are seeing:12 06/01/2007 14:21:31.208 NAT Discovery : Peer IPSec Security Gateway doesn't support VPN NAT Traversal 1.2.3.4, 500 5.6.7.8, 500 13 06/01/2007 14:21:31.160 IKE Initiator: Start Main Mode negotiation (Phase 1...
Here it is. I've changed the public IP's of the peers, but the peer I'm working with on this one is the last one (crypto map outside_map 20 ipsec-isakmpcrypto map outside_map 40 ipsec-isakmpcrypto map outside_map 60 ipsec-isakmpcrypto map outside_ma...
I just double-checked with the far end admin and he confirmed that they are indeed the reciprocal of each other.He stated earlier that he keeps getting a message on his sonicwall that the far end (pix) isn't supporting nat traversal. I'm sure that's...
