On 07/22/2013 03:22 PM, Jerry Roy wrote:
We have 4 att locations that will not encrypt ipsec traffic in both
directions. We see traffic from MT to our Juniper Head End bytes increasing
under the SA but ZERO bytes increasing coming back. We believe it has to do
with an att registration page that was not utilized during the self install
by the customer. Any way to get the MT to simulate web browser capabilities
so I can activate and fix this issue? Any ideas?
Anyone else seen the one way encrypt I describe?
The "one way encrypt" is probably one of 2 things:
1. Your tunnel is not established completely and traffic is being routed
by the MT side over the tunnel, but NOT on the other end. This is
likely to only be possible if the end on the MT side has public IPs on
the LAN side of the router.
2. If you cannot communicate from LAN to LAN, then it is probable that
one or more of the IPSEC settings are different on the 2 endpoints.
Getting the MT to simulate what you want is unlikely. You MAY want to
turn on web-proxy and see if you can make it do what you want from your
browser via the proxy. Not sure that will work, but it's worth a shot.
--
Butch Evans
702-537-0979
Network Support and Engineering
http://store.wispgear.net/
http://www.butchevans.com/
_______________________________________________
Mikrotik mailing list
[email protected]
http://mail.butchevans.com/mailman/listinfo/mikrotik
Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
