Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
2
Replies

PIX 501 <--> VPN 3030 Site-Site internal subnet access problem

avermilya
Level 1
Level 1

‎04-18-2005 12:08 PM - edited ‎02-21-2020 01:43 PM

172.16.69.x <-->PIX (Public IP)<---> Internet <--> (Public IP) VPN3030<--(172.16.68.0)-> Firewall <--10.x.x.x Subnet

From 10.x.x.x subnet, I can ping all devices behind remote PIX subnet. Ping 172.16.68.0 subnet from devices behind the PIX is fine, but I could not ping any devices in 10.x.x.x subnet.

Any sugestions are reaaly appreciated.

Labels:
Preview file
3 KB
0 Helpful
2 Replies 2

pkapoor
Level 3
Level 3

‎04-18-2005 12:54 PM

I understand that you cannot ping from the 172.16.69.x subnet to the 10.x.x.x subnet. But you can ping from 172.16.69.x to the 172.16.68.x subnet. Right?

If yes, then check the firewall between the 3030 concentrator and the 10.x.x.x subnet.

It should permit ICMP echo from 172.16.69.x to 10.x.x.x.

0 Helpful

avermilya
Level 1
Level 1
In response to pkapoor

‎04-19-2005 06:26 AM

Thank you so much for your help and you are right. It was the Firewall behind the Concentrator blocking it. Everything work now.

0 Helpful
Customers Also Viewed These Support Documents