Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
408
Views
0
Helpful
4
Replies

ASA to router VPN building

radutily1
Level 1
Level 1

‎10-22-2008 06:58 AM - edited ‎03-11-2019 07:01 AM

Hello guys,

I've got a problem while building VPN tunnel between cisco 1841 router and ASA 5510. The vpn tunnel is coming up only from firewall side.

Equipment is configured as described in this instruction: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00805e8c80.shtml

Who can advise?

Labels:
0 Helpful
4 Replies 4

husycisco
Level 7
Level 7

‎10-22-2008 08:01 AM

Hello Ilya,

Please post us the configs of both sides. There may be an issue with the interesting traffic ACL in router

Regards

0 Helpful

radutily1
Level 1
Level 1
In response to husycisco

‎10-23-2008 12:37 AM

Hello,

The configs are just the same as in the example. See attachment.

Thanks!

Preview file
2 KB
0 Helpful

husycisco
Level 7
Level 7
In response to radutily1

‎10-23-2008 01:47 AM

Configs look valid, try the follwoing

no ip nat pool branch 172.17.63.230 172.17.63.230 netmask 255.255.255.0

ip nat inside source route-map nonat interface f0/0 overload

no ip nat inside source route-map nonat pool branch overload

Run the following debugs in router, then initiate an interesting traffic and paste the debug output

debug crypto ipsec

debug crypto isakmp

0 Helpful

husycisco
Level 7
Level 7
In response to husycisco

‎10-23-2008 01:50 AM

also add this into router

crypto ipsec security-association lifetime seconds 3600

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card