ASA5510-Regular translation creation failed for protocol 50

Unanswered Question
Jan 24th, 2008

I have ASA5510 and having problems while connecting to remote VPN using cisco VPN client.


I will be able to get connect to VPN but not able to ping the remote network IP's and when I look into ASA logs I get the error "regular translation creation failed for protocol 50 "


This error message appears when I try to connect thro' PAT IP.


If i do NAT and configure access-list to allow

udp isakmp

tcp eq 10000

udp eq 4500

esp


it works fine.


As i see some one posted to configure to allow NAT-traversal & inspect ipsec-pass-thru command still its not working.


Also I tried configuring the TAC case collection K85809210

http://www.ciscotaccc.com/kaidara-advisor/security/showcase?case=K85809210


but no luck


Any body has any solution to this problem


Thanks,

Chandru

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
acomiskey Thu, 01/24/2008 - 06:27

If I understand correctly, you are connecting to a vpn through your 5510? Or are you terminating the vpn at your 5510?


I think you are connecting through the 5510, in which case the REMOTE firewall must have nat-t enabled.

Actions

This Discussion