Hi all,
i've got a VPN between 2 Nokia Clusters here (GW-A & GW-B).
The first ones, the GW-A, are the Central-GWs of a Star-Topology VPN.
LAN-A with Net 10.1.0.0/24 is connected directly.
The Second ones, the GW-B, are the Satelite-GWs.
LAN-B with Net 10.2.0.0/24 is connected directly.
LAN-C with Net 10.3.0.0/24 is connected via a Router to LAN-B.
Now, the Problem is that i can't communicate with the Hosts in 10.3.0.0/24 in
LAN-C from LAN-A behind GW-A (10.1.0.0/24). Same thing in the other direction!
Can anyone give please advice?
I checked, the Routing, Ecryption-Domain, Anti-Spoofing and Rulebase of Course
already.
Maybe there is problem with the encryption of the packets or Network-Adresses?
When i try a ping (echo-req) from 10.1.0.1 to 10.3.0.1 i see the Packet coming
in at the LAN-Interface of GW-A. At LAN-Interface of GW-B, i see the Packets
(echo-req) coming in and the answers (echo-rep) coming back from host 10.3.0.1.
But the echo-replies do not reach the LAN-Interface of GW-A.
A Connection from LAN-B to LAN-A can be done without problems. Same thing in
the other direction.
Regards
Thomas Kunz
T-Systems International GmbH
Global Network Factory, Network & Service Operations Munich
Fon: +49 89 54754 416 ; Fax: +49 89 54754 491
E-Mail: Thomas.Kunz AT t-systems DOT com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
