VPN Tunnel is but no traffic flows

Unanswered Question
Nov 4th, 2009

I have Cisco ASA5505 that I'm trying setup VPN access to and I'm having the hardest problem with it. The VPN tunnel connects and the logs show PHASE 1 completed. But whenever I try and make any connection to the internal lan I get nothing.

I have tried messing with NAT, and ACCESS-LIST but I still got nothing. Any help would be appreciated..

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Herbert Baerten Thu, 11/05/2009 - 00:36

The address pool for your vpn clients overlaps your internal network:

ip local pool vpn_pool mask

Try changing this (and the corresponding nat0 acl) to something like (or or whatever, as long as it does not overlap any other network).

If you still have a problem, check the ASA logs (Does it show phase 2 as complete, does it show any errors about your test traffic), and check the counters (encrypt, decrypt) on both the client and on the ASA ("show crypto ipsec sa"),


mikewillis Fri, 11/06/2009 - 11:17

Still nothing. This is starting to get frustrating. Its like the packets are entering the PIX but they aren't coming back through. I'm attaching some logs.


This Discussion