Hello. I have an 6500 VPN SPA Adapter. I run a site-to-site, digital certificate authentication scenario.
I have 2 Vlans in my crypto engine, one with a remote-access crypto map, the other with a site-to-site crypto map. I am only using now the site-to-site crypto map.
The IPsec negotiation completes successfully. Still, the traffic between ESN and PSN is not working.
ESN(188.8.131.52/24) - security gateway (184.108.40.206/16) ---- (220.127.116.11 - ipsec interface) cisco spa vpn adapter (18.104.22.168 - clear ip interface) --- PSN(22.214.171.124/8)
ping from 126.96.36.199 to 188.8.131.52 does not work
running sh crypto engine accelerator statistic all
I see packets dropped statistic incrementing a lot
I have attached my configuration. Please contact me for any other details that may prove useful for you at [email protected]. Thank you very much.