Hey,
fist of all, i want to say, that i’m very new to this, so please be patient, if i don’t understand so quick.
I just want to establish a site 2 site ipsec connection between 2 places, but i didn’t get it to work good.
There must be a small mistake anywhere, but i didn’t find it, and time is running out, so i please need your help.
I looked at every tutorial i can find, but everything should be ok.
Place 1:
ext. ip: 178.189.59.xx
int. ip: 192.168.20.0/24
Phase one, is working, on both sides are the correct remote peer in list.
But there are no SAs Keys in the list, so maybe the connection is not established right?
Passphrase is correct on both. Also Policy is correct on both. Proposal is same.
NAT:
Place 1: srcnat, Src: 192.168.20.0/24, Dest: 192.168.100.0/24, accept, on top of list.
Place 2: vice versa
I’m not able to ping the other side, in any direction. Public ips are pinkable from both sides.
Last thought is to enable IPSec logging to see what’s going on. But, if you have Phase 1 up, and you are sure that your policies are correct, then it’s likely just filter and route issues. If you post your IPSec export, we can help more.