Problem vpn Pix - Firewall nokia

Unanswered Question
Jul 24th, 2009
User Badges:

I have a tunnel vpn between a firewall pix 7.24 and a firewall nokia at other company.


I managing the frewall pix and another company the firewall nokia.


In the pix I have the following messages:


with the command:


sh crypto isakmp sa


1 IKE Peer: 1.1.1.4

Type : L2L Role : responder

Rekey : no State : MM_REKEY_DONE_H2

2 IKE Peer: 1.1.1.4

Type : L2L Role : responder

Rekey : yes State : MM_ACTIVE_REKEY


When it works properly show the following message


1 IKE Peer: 1.1.1.4

Type : L2L Role : initiator

Rekey : no State : MM_ACTIVE


What I can do to solve the problem?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ivillegas Thu, 07/30/2009 - 15:10
User Badges:
  • Silver, 250 points or more

Check that you are not doing the extended ping. Asa does not permit extended pings and you will have to actually pass traffic through the asa from any device connected on the inside for it to encrypt the traffic.

Actions

This Discussion