[c-nsp] PIX tunnel.

Rey Martin rey.martin at qalacom.com
Thu Feb 3 20:43:13 EST 2005 

for the start, have you tried to 'clear' it?
If it's still the same, can share the config and crypto debug with us?


----- Original Message ----- 
From: "ALI Rijas Mannanthara" <RAli at covansys.com>
To: <cisco-nsp at puck.nether.net>
Sent: Friday, February 04, 2005 8:43 AM
Subject: [c-nsp] PIX tunnel.


> Hi All,
>
>
>
> This is my first mail to this group. friends I Configured a tunnel from
> PIX to a remote firewall .
>
>
>
> I have 2 interesting traffic like
>
>
>
> Access-list 103 local      remote subnet 1
>
> Access-list 103 local      remote subnet  2 through the tunnel.
>
>
>
> When I say sh crypto isa sa it gives me this
>
>
>
>        dst               src        state     pending     created
>
>  local WAN ip    remote peer     MM_SA_SETUP   0           0
>
>  local WAN ip    remote peer     QM_IDLE         0           0
>
>  local WAN ip    remote peer     QM_IDLE         0           2
>
>  local WAN ip    remote peer     QM_IDLE         0           0
>
>  remote peer     local WAN ip    QM_IDLE         0           4
>
>
>
> tunnel is fine but want to know what is this created 2 and 4 while I
> have only 1 tunnel parameters.
>
>
>
> Thanks ,
>
>
>
> Rijas
>
> EPBX : 6226
>
> VoIP : 248-994-4858
>
>
>
> This E-Mail is intended only for the use of the individual or entity to
> which it is addressed and may contain information that is privileged,
> confidential, and exempt from disclosure. If the reader of this document
> is not the intended recipient or an employee or agent responsible for
> delivering this document to the intended recipient, you are hereby
> notified that any dissemination, distribution, or copying of this
> document is strictly prohibited. If you have received this document in
> error, please delete it. Thank you.
>
>
>
> Confidentiality Statement:
>
> This message is intended only for the individual or entity to which it is 
> addressed. It may contain privileged, confidential information which is 
> exempt from disclosure under applicable laws. If you are not the intended 
> recipient, please note that you are strictly prohibited from disseminating 
> or distributing this information (other than to the intended recipient) or 
> copying this information. If you have received this communication in 
> error, please notify us immediately by return email.
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list