Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
427
Views
0
Helpful
1
Replies

not able to ping

zeuscyril
Level 4
Level 4

‎10-21-2009 05:25 AM

hi friends,

i configured site to site vpn between two sites ,one side having cisco 2811 and the other side juniper firewall.but the tunnel is up ,but i am not able to ping the remote lan

and my sh crypto isakmp sa showing

state-QM_IDLE and active

but not able to ping

help me out

Labels:
0 Helpful
1 Reply 1

vincent.monnier
Level 1
Level 1

‎10-23-2009 02:27 AM

You should payed attention from which IP your are sending the ICMP echo request.

The source IP address of your testing packets should be in the participating networks of the IKE phase2.

For exemple :

On your 2811 use the following command

ping destination_ip_add source 2811_lan_ip_add

or

ping destination_ip_add source lan_interface_name

on your Juniper (if screenOS) use :

ping destination_ip_add from lan_interface_name

0 Helpful
Customers Also Viewed These Support Documents