IPSec VPN connection not working
JLAW904
Member Posts: 23 ■□□□□□□□□□
I'm completely new to VPN configuration and I'm having some trouble with this lab I'm following along from the CBT Nuggets "CCNA For The Real World" series. I'm using GNS3 and the Branch and Corporate routers don't seem to be establishing a VPN connection. If I do a "show crypto isakmp sa" no connections show. I don't even see any output if I turn on "debug crypto isakmp" or "debug crypto ipsec".
Here's the (partial) setup:
10.1.254.0/24----BRANCH_ROUTER----192.168.1.0/24----CORP_ROUTER----10.1.0.0/18
The goal is to create a VPN connection between the BRANCH and CORP routers so that they can transmit encrypted private network data while also being able to access the internet using NAT. The 192.168.1.0/24 network is the public internet (I have them connecting through the cloud in GNS3 via my home network so they can access the internet). All the private networks in my lab can successfully NAT and ping any real public address. And the two routers can ping each other's "public" address. But when I try to get the two private networks to communicate over the VPN, all pings fail. And like I said above, there doesn't seem to be a VPN connection at all. I'm clueless here, as this is a little above my level and even the CCNA R&S topics (which is why I'm posting here). Thanks in advance.
BRANCH ROUTER:
https://www.dropbox.com/s/57qiipiztt6lrgx/BRANCH.txt
CORPORATE ROUTER:
https://www.dropbox.com/s/qcgrjrwixc8mms5/CORPORATE.txt
Here's the (partial) setup:
10.1.254.0/24----BRANCH_ROUTER----192.168.1.0/24----CORP_ROUTER----10.1.0.0/18
The goal is to create a VPN connection between the BRANCH and CORP routers so that they can transmit encrypted private network data while also being able to access the internet using NAT. The 192.168.1.0/24 network is the public internet (I have them connecting through the cloud in GNS3 via my home network so they can access the internet). All the private networks in my lab can successfully NAT and ping any real public address. And the two routers can ping each other's "public" address. But when I try to get the two private networks to communicate over the VPN, all pings fail. And like I said above, there doesn't seem to be a VPN connection at all. I'm clueless here, as this is a little above my level and even the CCNA R&S topics (which is why I'm posting here). Thanks in advance.
BRANCH ROUTER:
https://www.dropbox.com/s/57qiipiztt6lrgx/BRANCH.txt
CORPORATE ROUTER:
https://www.dropbox.com/s/qcgrjrwixc8mms5/CORPORATE.txt
Comments
-
JLAW904 Member Posts: 23 ■□□□□□□□□□Alright, so today I tried to open my topology and GNS3 was giving me all kinds of weird errors so I ended up reinstalling it completely. I copied all of my previous configs into the new topology I set up, and go figure..... it all works!
So it looks like my configs were alright and GNS3 was having some issues...
I highly recommend this lab for anyone looking for a great real world scenario configuration:
https://www.youtube.com/playlist?list=PLqnM-rxlC5ReKoNArC28CNKaVg6RgYXOX