07-10-2008 08:42 AM
Hi,
I have a cisco router 2800, and i want to stablish an vpn encrypted connection with an ASA 5520 (property of a client of my own company)but i can't do it.
I have checked the configurations and the debugs, but I do not see where the mistake can be.
I attach the configuration and the debug gathered in c2800.
Thanks and regards.
07-10-2008 09:22 AM
show full config....
07-10-2008 09:34 AM
Check the transform set configuration, both sides should be indentical..
*Jul 10 16:44:03.589: ISAKMP:(0:1:SW:1): hash verification failed for -1273054243!
07-11-2008 01:52 AM
The transform-set is equal in both sides, I am sure enough of it.
Which can be the meaning and the reason of this line in the debug? Don't you see anything that could be important?
Thanks and regards.
07-11-2008 02:34 AM
07-14-2008 11:56 AM
hi,
check the traffic which you want to encrypt, should be the same on both sides. Also take a look that you do not nat this traffic (asa side) !
look at this example :
regards
alex
07-14-2008 01:17 PM
local_proxy= 0.0.0.0/0.0.0.0/0/0 (type=4),
remote_proxy= 0.0.0.0/0.0.0.0/0/0 (type=4),
what is your crypto ACL on both sides?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: