Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
This should be a fairly simple question. With a VPN tunnel can you specify a larger IP range in the access-list such as 10.1.0.0/8 that will accept traffic from smaller subnets in that range like 10.1.3.0/24?I'm not sure if the ACL just inspects th...
I'm trying to establish a L2L VPN tunnel between an IOS Router and a PIX 515E running Software Version 7.2(1)...I keep getting this in the logs:Feb 21 18:24:12 [IKEv1]: IP = x.x.x.x, Removing peer from peer table failed, no match!Feb 21 18:24:12 [IKE...
The release notes for 7.2.1 software mention sub-second failover: http://tinyurl.com/f4kwgAre they just talking about the 500/ 800msec failover polling times?
Unfortunatly I don't know a lot about all of IOS's feature sets and offerings.That being said; Do you need the MPLS feature set in your edge routers if you WAN provider is offering you an MPLS solution?
Yes that's what the topology is like.I'm using "interface inside" since we utilize OSPF to define our network.I'm not so concerned with actually having the tunnel work. I just want it to come up, and I don't understand that error or how to troublesh...
Alright, I changed that. It now reads:access-list outside_20_cryptomap extended permit ip interface inside object-group ageon-ip-rangeaccess-list inside_nat0_outbound extended permit ip interface inside object-group ageon-ip-rangeBut I get the same ...
