Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
264
Views
0
Helpful
1
Replies

VPN 3005 Ipsec lan-to-lan configuration trouble

verusadmin
Level 1
Level 1

‎06-18-2004 01:14 PM - edited ‎02-21-2020 01:12 PM

I just bought a new VPN 3005 and trying to create a lan-to-lan connection to one of our client who also has a same box. We managed to connect but I can ping them but they can't ping me. And nothing else seems work like FTP or Telnet either direction.

Here is our network diagram. http://mail.verus-tech.com/network.gif (Router on both end means Cisco VPN 3005)

Initially we set them up using pretty much basic setting with no NAT involved. We were able to establish an active session and I was able to ping 10.100.10.100 from our server 65.203.232.253. However client can't ping our server from there. And that's about it as I can't telnet or FTP into the client's server either.

After trying out just about everything I suggested to client that they configure NAT on their firewall so that 10.100.x.x network behind the VPN box will get translated to public IP address. We are both new to IPSec lan to lan thing so we have no idea how to configure this or whether this is needed in our case.

Can anyone help me out?

Thanks.

tj

Labels:
0 Helpful
1 Reply 1

jsivulka
Level 5
Level 5

‎06-24-2004 07:34 AM

You could refer to the configuration example 'IPSec Between Two Cisco VPN 3000 Concentrators with Overlapping Private Networks' to see if you are missing something.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_example09186a00800ef7ad.shtml

0 Helpful
Customers Also Viewed These Support Documents