Home > IT Answers > Security > l2l vpn
Ekansh
400 pts.
 l2l vpn
Cisco PIX, Cisco PIX 525, Cisco VPN, Cisco VPN Error Messages, L2L VPN, VPN
we have vpn l2l tunnel name xyz 192.168.2.5, 192.168.2.6 are maped to the tunnel the vpn tunnel working fine but we added another ip 192.168.2.6 to vpn tunnel and move this server to dmz It is showing that the traffic cumming from outside is decrypting but it is not encrypting and going back. access-list DMZ-XCHG-nat0 extended permit ip host 192.168.2.6 172.20.1.5 255.255.252.0 access-list WEBDMZ_access_in1 extended permit ip host 192.168.2.6 172.20.1.5 255.255.252.0

same access list for other 2 ip is implemented in inside network and it is working fine. What should be the problem ?

message showing in my pix firewall like this

#pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0

#pkts decaps: 9, #pkts decrypt: 9, #pkts verify: 9



Software/Hardware used:
cisco pix firewall 525
ASKED: September 17, 2009  5:49 AM
UPDATED: September 17, 2009  12:26 PM
RELATED QUESTIONS
Answer Wiki:
The answer should be PIX# access-list DMZ_outbound_nat0_acl extended permit ip host 192.168.2.6 172.20.1.5 255.255.252.0 access-list VPN extended permit ip host 192.168.4.101 10.91.84.0 255.255.252.0
Last Wiki Answer Submitted:  September 17, 2009  8:20 am  by  Ekansh   400 pts.
All Answer Wiki Contributors:  Ekansh   400 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

The steps you listed make completely sense and are easy to follow.

Burt Venner
 0 pts.
 

Your momma did not raise any dummies! Great post!

Weldon Wuori
 0 pts.