02-24-2012 01:38 PM
VPN between datacentre & office
ASA 5510 & HP routers site-to-site vpn, 192.168.1.0 и 172.16.0.0 networks
If I ping internal routers' cisco address 192.168.1.1 from 172.16.0.0 network host (172.16.2.200) I get ping timeout
At the same time I see the same messages in ASDM monitoring when successful ping reaches and comes back to 192.168.1.0 host (192.168.1.101 for example)
Pings from 172.16.0.0 to 192.168.1.0 hosts are ok, only 192.168.1.1 is silent
Looks like icmp echo reply is not allowed or smth like that, where to take a look?
why monitoring looks ok instead of denied according to ACL...?
02-24-2012 08:21 PM
please post your tunnel config from both devices.
02-25-2012 03:14 AM
"management-access internal-1" helped
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: