Iphone and ASA

Unanswered Question
Nov 10th, 2008
User Badges:

I am running ASA 8.0.3 and trying to get my iphone to connect in via IPSEC. It appears that my iphone gets an IP address from the ASA but after about 30 seconds it stops trying to connect and the error that I see in the ASDM is related to a phase2 issue. Any thoughts on what might be happening here?

713201 Group = TEST-VPN, Username = me, IP = 24.114.233.xxx, Duplicate Phase 2 packet detected. Retransmitting last packet.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ajagadee Mon, 11/10/2008 - 16:29
User Badges:
  • Cisco Employee,


What type of encryption have you configured? Make sure that you have IPSec phase 2-3DES or AES encryption with MD5 or SHA hash method.

For example:

crypto ipsec transform-set trans esp-3des esp-sha-hmac



*Pls rate if it helps*

rdlucas Tue, 11/11/2008 - 06:09
User Badges:

Here is part of the config...

sh run | include crypto ipsec

crypto ipsec transform-set low-security esp-aes esp-sha-hmac


This Discussion