IPsec VPN "site to site" USG20<-> USG40
Options
All Replies
-
IMVHO you should ask to your iSeries sysadmin.As an example, you can try this with a windows computer or a network device with management.
If 192.168.8.249 is not used, configure it as address for a test PC or network device, but without any gateway. You will be able to ping it from the subnet, but from the VPN it will be completely missing. It will receive packages, but without a gateway and/or the correct routing table, it won't be able to address answers of ICMP packages.Unless something peculiar has been done with VPN connection, policy routes, firewall rules (for instance, 192.168.8.2 forbade to connect to anything into security policies)... the answer for the mistery is inside your iSeries device.0 -
Hi, Solved!
there was a problem inside tcp configuration in As400.
thanks to everyone and especially to mMontana for last tip.0
Guru Member
Freshman Member
Categories
- All Categories
- 397 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 52 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 221 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight
