Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
258
Views
0
Helpful
1
Replies

Failover ASA pair to failover ASA pair - problem accessing remote standby

RicheeJJJ_2
Level 1
Level 1

‎02-01-2009 12:54 PM

<p>I have a L2L VPN that goes from the head end of a ASA failover pair to a remote ASA failover pair. There is nothing wrong with the VPN tunnel or access to any of the network EXCEPT the standby ASA on the remote side.</p>

<p>I am trying to access the remote standby device going over the tunnel (and so is tacacs/ciscoworks/ehealth etc). I believe the packets are getting to that firewall just fine, but when it tries to route back home it sends the packet out the outside interface, because the primary has a tunnel established on the outside interface. This is when the packet just dies and gets lost.</p>

<p>How can I get the standby ASA to use the active ASA's vpn tunnel when sending packets destined for something on the other side of that tunnel? There has to be a magic cisco command that does this correct?</p>

Labels:
0 Helpful
1 Reply 1

RicheeJJJ_2
Level 1
Level 1

‎02-05-2009 03:09 PM

I'm not sure if people don't have enough information to help me or if there truly is no solution to this.

0 Helpful
Customers Also Viewed These Support Documents