i am establish a vpn tunnel between cisco asa 5510 and a cisco router.The tunnel is up and i can ping both crypto interfaces.Also from the asa console i can ping the lan interface of the router but from the router i can not ping the lan interface of the asa this message shows up in the log
%ASA-3-713042: IKE Initiator unable to find policy: Intf liaison_BLR, Src: 128.2
23.125.232, Dst: 184.108.40.206
Here is the config of the equipements.
I was able to successfully establish an ipsec tunnel with another 1841 ROUTER.I am having 1 hub site and 3 remotes sites with asa as hub.
Your crypto ACLs aren't matching. They need to be exact mirrors of each other.
Also, you may want to consider fixing the security-levels on the interfaces. They are all set to 0. Set the internal/private ones to a higher value.
Let me know how it goes.
PS. If you find this post helpful, please rate it.