vpn led active

Unanswered Question
Oct 6th, 2009

i establishing a vpn tunnel betwwen 1 asa 5510 and 5 routers 1841.I xas able to establish the tunnel for the first router 1841 however the second show the vpn led of the asa green packets are encrypted but none decrypted and i can not ping from on side to the other here is the output of sh ipsec sa


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
pompeychimes Tue, 10/06/2009 - 19:58

What IP are you pinging from and to? Do these IP's reside on the end point devices or on devices behind the end points.

frattonfaithful Tue, 10/06/2009 - 22:51

So to be clear you are sourcing the ping from the network to the network and vice versa.

Please provide "sh crypto ipsec sa detail" output from both sides.

kolawole1 Wed, 10/07/2009 - 04:04

Here is yhr output I am able to ping from the asa console to the router's SUBNET but the not from the asa lan interface

From the rtr (both console and inside) i am able to ping the asa outside interface where crypto map is applied




This Discussion