Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
585
Views
0
Helpful
2
Replies

DMVPN behind Nat and layer3 switch

Patrick.Beaven
Level 1
Level 1

‎04-19-2007 01:01 PM - edited ‎02-21-2020 02:59 PM

Has anyone seen this issue before,

I have several DMVPN sites all running fine. I need to setup one site behind a firewall(ASA) and segmented out on a seperate vlan(3750)

The Firewall has a routed vlan and is directly connected to the switch (vlan 99) the 1841 router (DMVPN SPOKE) is in vlan 100. Vlan 100 is a routeable vlan.

I have full connectivity to the Internet all other apps and functions are working. The dmvpn router (1841) has internet connectivity. The crypto SA's Keep expiring. No complete vpn connection. Here's the Kicker. If i place the 1841 in the same vlan as the ASA, It works fine. If i put a pix firewall in front of the 1841 router back in vlan 100 it works! If i put it back in vlan 100 with the vlan100 interface as the default gw it doesn't work!

I'm Not really sure where to start at on this issue.

Any Ideas?

Labels:
0 Helpful
2 Replies 2

wong34539
Level 6
Level 6

‎04-25-2007 10:17 AM

Try changing the lifetime value to 86400

0 Helpful

Patrick.Beaven
Level 1
Level 1
In response to wong34539

‎04-26-2007 07:13 AM

I will try that

Thanks,

0 Helpful
Customers Also Viewed These Support Documents