IPSec ping remote gw


#1

I’d like to do a ping test over the Internet for an IPsec mapping.

The local mapping is 172.16.0.0/24 <-> 172.17.3.0/24

From 172.16.0.1 I can ping 172.17.3.1 no problem
I’d like to NAT 172.17.3.1 so I can do a ping test of the health of the tunnel over the Internet.

I created a NAT of 184.x.x.10 to 172.17.3.1
Opened up any any on my firewall on 172.16.0.1 (will restrict later)

From 172.16.0.10 I can ping 172.17.3.1
From 172.16.0.10 I can ping 184.x.x.10

I cannot ping 184.x.x.10 from the outside.

Where am I getting blocked?

Thanks.

7.1.1 3775