Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
402
Views
0
Helpful
2
Replies

site-to-site VPN inside interface ping

ohchan
Level 1
Level 1

‎09-15-2020 04:15 AM

PC1 - ASA1 ---- ASA2 - PC2

 

PC1 IP : 100.100.100.100

ASA2 inside interface IP : 200.200.200.1

 

It is composed as above.

source Ping 100.100.100.100 destination 200.200.200.1 in PC1

ping failed

 

why fail??

Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎09-15-2020 04:25 AM

We need to know more information and config :

 

also check below  steps  :

 

is this IP range part of encryption domain

Do you have ACL to allow ping both the side.

is the windows FW in place (if the device is Windowss based)

 

are you pinging from PC to PC or from ASA ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Rob Ingram
VIP
VIP

‎09-15-2020 04:57 AM

@ohchan 

You will need to configure the management-access interface command in order to manage (ping, asdm or ssh) to the ASA's inside interface over a VPN tunnel.

management-access <interface-name>

Reference here:-

https://www.cisco.com/c/en/us/support/docs/security/adaptive-security-device-manager/118092-configure-asa-00.html

 

HTH

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents