hello fellas,
I have two sites both running on asg utm fw
I setup the site2site vpn, the tunnel is up but I cant ping each network
HQ ASG 425 internal ip add is 192.168.0.1/24 connected to layer 3 switch with ip add of 192.168.0.254/24.L3 switch the default gw is asg425 int add 192.168.0.1.L3 switch has lots of switch port vlan interfaces.lets say vlan 192.168.2.1, vlan 192.168.15.1, vlan 192.168.8.1 and etc...All vlans passes through asg w/o a problem they can surf the net.I have gateway route (192.168.0.254) to my asg425. Each vlans has Masquerading and Packet filter under asg425
On other hand I have asg120 on remote site.
Basic setup External and Int addresses are configured properly.
dgw, dns,masquerading and Pf are configured.
In short in this setup everything work fines.No vlans involved on this site.
Again, site2site vpn tunnel is up, but when I tried to ping on HQ side no reply at all.
In the ipsec config below what do I miss?
Any help is welcome
IPSEC Settings for HQ
Remote Gateways
Name =to Remote (115.85.x.x)
Gateway Type= Initiate Conn.
Gateway=Public add of Remote FW
Autentication=Preshared Key
Remote Net=192.168.0.0/24
IPsec Conn
Name=HQ (119.111.x.x)
Remote GW= to Remote (name created in remote gw)
Local interface=External/WAN
Policy=AES-256
Local net =(192.168.8.0/24) part of vlans
(192.168.8.0/24) part of vlans
Auto Packet Filter is enabled
IPSEC Settings for Remote
Remote Gateways
Name =to HQ
Gateway Type= Initiate Conn.
Gateway=Public add of HQ FW
Autentication=Preshared Key
Remote Net=192.168.8.0/24
192.168.15.0/24
IPsec Conn
Name=Remote
Remote GW=to HQ (name created in remote gw)
Local interface=External/WAN
Policy=AES-256
Local net =internal net (192.168.0.0/24)
Auto Packet Filter is enabled
This thread was automatically locked due to age.
