vpn led active

Unanswered Question
Oct 6th, 2009
User Badges:

i establishing a vpn tunnel betwwen 1 asa 5510 and 5 routers 1841.I xas able to establish the tunnel for the first router 1841 however the second show the vpn led of the asa green packets are encrypted but none decrypted and i can not ping from on side to the other here is the output of sh ipsec sa


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
pompeychimes Tue, 10/06/2009 - 19:58
User Badges:
  • Bronze, 100 points or more

What IP are you pinging from and to? Do these IP's reside on the end point devices or on devices behind the end points.

kolawole1 Tue, 10/06/2009 - 22:41
User Badges:

they reside on both the endpoints and the local subnet

frattonfaithful Tue, 10/06/2009 - 22:51
User Badges:

So to be clear you are sourcing the ping from the network to the network and vice versa.

Please provide "sh crypto ipsec sa detail" output from both sides.

kolawole1 Wed, 10/07/2009 - 04:04
User Badges:

Here is yhr output I am able to ping from the asa console to the router's SUBNET but the not from the asa lan interface

From the rtr (both console and inside) i am able to ping the asa outside interface where crypto map is applied




This Discussion