I want to make a vpn net-net from an ASL to an ASL. But on one side i have an ciscorouter with an access-list in it. Is there someone who knows what i have to permit to have the vpn getting through the ciscorouter(i allready know port 500). I saw this on the ciscosite but it doesn't seem to work:
access-list 102 permit gre host 240.44.27.244 host 240.44.27.243
> access-list 111 permit gre host 240.44.27.243 host 240.44.27.244
> access-list 111 permit esp host 240.44.27.243 host 240.44.27.244
> access-list 111 permit ahp host 240.44.27.243 host 240.44.27.244
> access-list 111 permit udp host 240.44.27.243 any eq isakmp
I get contact between the two ASL's but can't ping from one to the other. I think this problem was allready an subject in:Topic: Net to Net VPN ASL v1.8 , but there is no solution in this topic.
Hope someone can help me out.
[ 20 October 2001: Message edited by: jascha ]
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
