Hi I have a problem

my network look like this

host->ciscoRouter1---GRE tunnel--ciscoRouter2->IPsec VPN->juniper router

Packet coming from host to ciscoRouter2 succefuly,

IPsec VPN is up

sh crypto isakmp sa

IPv4 Crypto ISAKMP SA

dst             src             state          conn-id slot status

xx.xx.xx.23    xx.xxx.xx.54    QM_IDLE           1010    0 ACTIVE

BUT

When I ping remote host on other side of ipsec vpn, icmp fail and only "

send errors" counter increments, other counters all = 0, why could be so?

sh crypto ipsec sa

interface: Vlan2

    Crypto map tag: TeraD_CrMap, local addr xx.xxx.xx.54

   protected vrf: (none)

   local  ident (addr/mask/prot/port): (10.1.1.10/255.255.255.255/0/0)

   remote ident (addr/mask/prot/port): (xxx.xx.xx.18/255.255.255.255/0/0)

   current_peer xxx.xx.xx.23 port 500

     PERMIT, flags={origin_is_acl,}

    #pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0

    #pkts decaps: 0, #pkts decrypt: 0, #pkts verify: 0

    #pkts compressed: 0, #pkts decompressed: 0

    #pkts not compressed: 0, #pkts compr. failed: 0

    #pkts not decompressed: 0, #pkts decompress failed: 0

    #send errors 45, #recv errors 0

     local crypto endpt.: xx.xxx.xx.54, remote crypto endpt.: xxx.xx.xx.23

     path mtu 1500, ip mtu 1500

     current outbound spi: 0x0(0)