Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
381
Views
0
Helpful
1
Replies

Help re IOS VPN!!!

robyn_bailey
Level 1
Level 1

‎04-04-2003 03:39 AM - edited ‎02-21-2020 12:27 PM

Hello

I have an 827 with 12.2.4(T) and a 1720 with same. I create an IPSEC VPN between them but traffic is not seen inbound to the 1720 from the 827 when I look at sh cry ips sa.

If I ping from the 1720 to the 827 then look at sh cry ips sa on both I see that the echo request has gone throught to the 827 and its replied back thru the tunnel but it never gets decrypted back at the 1720.

I'm also running static nat at both ends but getting around it by use of route-maps in NAT statements (that is, denying NAT to traffic that should be tunneled).

Thanks in advance

Labels:
0 Helpful
1 Reply 1

xiaoj
Level 1
Level 1

‎04-04-2003 11:14 AM

Usually it happens when you don't have matching ACLs on both side or one of your routers has more than one path to the remote side.

I would check ACLs and NAT tables.

0 Helpful
Customers Also Viewed These Support Documents