Routing wise, all sites see each other. Its only ceases to work when I attempt to start up the site to site connection. If I remove the Endpoints from the mesh, then they can ping each other just fine. This is specific to only sites A and C. The other 2 connections work fine(A-B / B-C)
-----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Reinhard Stich Sent: Thursday, August 02, 2007 10:53 AM To: [email protected] Subject: [FW-1] AW: [FW-1] Multiple Site to Site Tunnels hi, is routing clear? Does site a knows how to access site c and c how to access a? Are the 3 sites managed centrally or locally? any drops on site a or c? Maybe phase-II problem with settings? Maybe routing or nat? br reinhard -- Reinhard Stich, Internet Security AG Mobile email powered by Nokia Intellisync -----Ursprüngliche Nachricht----- Von: Lyle Dove Gesendet: 02.08.2007 19:42:17 An: Lyle Dove;[email protected] Betreff: [FW-1] FW: Multiple Site to Site Tunnels Hello Gurus, I'm having a very strange issue. I have 3 sites that I am attempting to establish Site to Site connections on in basically a ring. Lets call them Site A, B, C. A - Splat R55W B - Clustered Nokia R55 C - Clustored Splat R62 Now, Site A connects fine to Site B. Site B connects fine to Site C. Site A can't connect to Site C. >From what I've been able to determine, Site A appears to try to establish connectivity to Site C as if its already established. In that when I attempt to access a device that is @ Site C from Site A, in the log it reports that there is no valid SA after it shows a encrypt accept. I'm not clear as to why Site A works fine connecting to Site B, and Site B can connect to Site C. I've insured that the ecryption domains don't overlap as well from site to site. Any thoughts on what I can look for or if more information is needed to assist? Thoughts? -Lyle ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
