Hi All,
Here is a simple drawing of VPN topology.
All LANs fully transparent each-to-each. The only problem: NS5GT self can't reach any IP across VPN (whole 10.0.0.0/8) as well as SSG-140 can't reach any IP across VPN (10.41.82.0/24).
I guess that reason is that pinging don't have a route back to the IP address that the router chose as the source IP address of the ICMP echo request, i.e. source IP of "Self" is Untrust interface.
The question is how to solve this matter?
I really need the solution because of NS5GT can't send e-mail alarms, syslogs etc.
Thank you!