11-16-2009 04:47 PM - edited 03-04-2019 06:44 AM
Hi,
i am trying to Establish IPSec VPN Tunnel between to ASA 5505. I assigned the IP address, enabled NAT, Configured the IPsec and IKE and other basic configuration.
When i tried to Ping the inside address of the other end from inside network of this end i am seeing this error message on the ASDM home screen (Deny inbound icmp scr inside: <private ip address> dst inside: <private IP addr> (Type 8, Code 0))
What is the possible Reason for this error message. i have allowed the icmp echo and icmp echo-reply on the outside interface of both the ASA.
Can some help me on this
Thanks
Logesh
11-17-2009 04:01 AM
Hi!
On the inside interfaces, do you have any ACL? You said that you allowed ICMP on the outside ones, but nothing about inside.
Second, where do you see the error message? On the source ASA or on the destination?
11-19-2009 09:45 PM
This is resolved.
By mistake insted of applying the IPsec rule on outside interface in applied it to the inside interface.
Thanks for your help
Logesh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide