This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ipsec tunnel only accessable from one site

I set up an ipsec site-to-site vpn with rsa authentication: One site is an astaro 7.404, the other 7.403.
Following problem: The tunnel works but after some time it only seems to be working, because it is just possible to inititiate a connection from one site to the other - and it is allways the same site; after having done this it works fine for a while and then the same thing happens.
I tested different authentications, different gw-type (initiate on both sites or initiate nd just answering) - can't find any solution.
Thank you for your help!

This thread was automatically locked due to age.

Parents

0 BAlfson over 16 years ago

I think NAT-T allows NATted internal addresses in one LAN to communicate with NATted internal addresses in another LAN. If NAT-T is not used, I don't think you get reliable communication between devices in LANs connected via a Site-to-Site VPN. Your response makes me wonder if NAT-T is enabled on both sides.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 16 years ago

I think NAT-T allows NATted internal addresses in one LAN to communicate with NATted internal addresses in another LAN. If NAT-T is not used, I don't think you get reliable communication between devices in LANs connected via a Site-to-Site VPN. Your response makes me wonder if NAT-T is enabled on both sides.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data