how to trouble shoot VPN client inability to create tunnel with firewall

Unanswered Question
Apr 8th, 2008
User Badges:

We have ISP router> hq 2821 perimeter router>ASA5510 firewall. The firewall creates and breaks IPSEC tunnels. Cisco VPN Client was downloaded and installed on computers. The computers can ping outside interface of the ASA firewall, but can not create IPSEC tunnel. Any suggestion would help in troubleshooting.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
saidfrh Tue, 04/08/2008 - 14:24
User Badges:

I downloaded and installed Cisco VPN I can not create a tunnel. Could you advise. The following attachment contains the sh ru output. Thanks.

sundar.palaniappan Tue, 04/08/2008 - 15:40
User Badges:
  • Green, 3000 points or more

A quick review of configuration shows the following commands missing under your group policy. Can you add this to your configuration and test.

group-policy client attributes

vpn-tunnel-protocol IPSec

address-pools value clinetpool




This Discussion