I have an IPSec tunnel from my Cisco 3845 router to a remote vendor Cisco Concentrator.
I have two data streams from 2 hosts on my side that should go through this tunnel.
Both data streams work, however, once the first data stream brings up the tunnel, and the second data stream starts, it looks like it's trying to initiate a new IKE session to the remote peer instead of using the existing tunnel. A show crypto isa sa reveals multiple MM_Init sessions. This of course fails. And it doesn't matter which data stream starts first.
I have other IPSec tunnels on my router, with multiple data streams, and have no issues with them.
Could this be something to do with the concenterator?
We've confirmed ACLs and ISA/IPSec parameters on both ends match.
Any insite is greatly appreciated!