This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Tunnel is up but can't ping internal IP's

I have a feeling I'm missing something obvious here. I have and IPsec site to site VPN up and running between my ASG(8.305) and a Lancom DSL router. I can ping from the ASG to the internal router IP of the Lancom device. I can also ping from machines inside the ASG to the internal IP of the Lancom device.
From the Lancom device I can ping the external interfaces of the ASG but I can't ping the internal IP ASG address or any PC's on the internal subnet.
I have firewall rules set up to accept all traffic from the internal network on the Lancom router side. I don't see anything being dropped in the firewall logs.
Any help is much appreciated.

This thread was automatically locked due to age.

Parents

0 BarryG over 13 years ago

Hi,
What do you have set in the ICMP settings in Astaro?

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 13 years ago

Hi,
What do you have set in the ICMP settings in Astaro?

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 bken over 13 years ago in reply to BarryG

Hi Barry, Thank you for your reply. I set the ICMP settings and Ping settings to allow everything.

ICMP = Allow ICMP on firewall & Allow ICMP through firewall

Ping = Firewall is ping visible/Ping from Firewall/Firewall forwards pings.

Thx
Cancel
Vote Up 0 Vote Down

Cancel
0 bken over 13 years ago in reply to bken

This has been solved. The issue was that the router on the far end was not routing packets bound for the internal IP address of the Astaro through the VPN tunnel. Therefore, packets were being dropped immediately at the far end.

Thx!
Cancel
Vote Up 0 Vote Down

Cancel