Hello, i have configured Site-to-site VPN between two Locations. Head Office: Cisco VPN 3005 Branch Office: ISA Server 2004
In the IPSec configuration there are configured some local LANs on both sites, e.g. Head Office: 10.201.132.0/21 and 10.3.121.0/24 Branch Office: 10.201.137.0/25
Internal IP Interface of VPN 3005 is 10.3.121.10
Traffic between 10.201.132.0/21 and 10.201.137.0/25 is possible in both directions. Traffic from 10.201.137.0/25 to 10.3.121.0/24 is prossible, but Traffic from 10.3.121.0/24 to 10.201.137.0/25 is only possible, if traffic runs from 10.201.137.0/25 to 10.3.121.0/24. Means, the tunnel between these ranges is only establish from Branch Office (ISA Server 2004), not from Head Office (Cisco VPN 3005). In last case, if Cisco VPN 3005 should open the tunnel, on Cisco VPN
3005 I see the messages: "Received non-routine Notify message: Invalid ID info (18)" But i dont know, what this means.Why does establishing is possible in one direction, but not in the other?
Can anybody help me?
Best regards, Frank Pusch