Firewall blocking my VPN traffic?

[hummer3331973]

I've put-up a site-to-site VPN using 2 Cisco routers (3825 and 28xxx). I believe I've set-up the config correctly using IPsec but why can't the ping (from the other end) reach my internal network? Is the firewall blocking it (a Watchguard is installed after the router)? How can I prove this?

Have reported this to the network admin but he said that eventhough we can't ping it, it doesn't mean that there's no connection. Is this correct?

This is my first time to put up a VPN and any help is appreciated. Thanks.

 

[jfwebber]

What your network admin says can be correct. It is possible that ICMP is being filtered at the firewall.

Jim W MCSE CCNA
Network Manager

 

[hummer3331973]

Thanks Jim. Is there a router IOS command that let's me check if the traffic (or even ping) from the far-end is at least reaching my router (before the firewall)?

 

[jfwebber]

you could try a traceroute to an IP on you internal network. The traceroute will show you the hop along the way.

Jim W MCSE CCNA
Network Manager