Cisco VPN troubleshooting
From: Seth Rothenberg (srothenb_at_montefiore.org)
Date: 05/07/03
- Previous message: pablo marini: "QLA2212 Fibre Channel problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 07 May 2003 12:39:41 -0400 To: <"'sunmanagers@sunmanagers.org'" <sunmanagers@sunmanagers.org>>
Greetings,
We are in the process of setting up a new VPN connection (from Solaris 2.6)
via a Cisco device
(I am not sure it matters which). When I telnet to the IP address of the
tunnel and port
I was given, I get nothing. When I telnet to (port 23) at the same IP
address, I get
bounced to our inside firewall (which is a different box).
So, I tried to snoop on my ethernet interfaces - in part because I have 2
interfaces,
and only one is defined to the tunnel, so I used route to try to force the
traffic to
the right interface. In both cases, I saw no trace of the packets on either
interface,
and arp does not report anything for this IP address.
When I did ping of the tunnel IP address, I got Host Unreachable from
(with the real Internet address of our side of the VPN).
Does anyone have any suggestions from the Solaris admin side of things?
My next test is to have my firewall admin do a snoop to see how I ended up
there.
In case that does not resolve it, I would appreciate others' experience.
BTW, the VPN device on our side does serve other groups already, likewise on
their side.
I don't yet know which Cisco they are using on either side.
Thanks
Seth
PS They requested we use port 57214 for our data. In the past, I recall
finding that there was
a limit of 32767 for this application's port # . Does anyone know if there is
a limit in Solaris?
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
- Previous message: pablo marini: "QLA2212 Fibre Channel problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
