i have a problem with a l2l vpn beetwen Cisco ASA 8.2.(1) and Cisco router 2801.
Random, some network defined in the split tunnel stop to work, the vpn is up and i see the packet come through the tunnel with 'debug icmp trace'
ICMP echo request from outside:MYVEM-1 to inside:192.168.11.11 ID=28964 seq=0 len=42
ICMP echo reply from inside:192.168.11.11 to outside:MYVEM-1 ID=28964 seq=0 len=42
ICMP echo request from outside:MYVEM-1 to inside:192.168.11.12 ID=29220 seq=0 len=42
ICMP echo reply from inside:192.168.11.12 to outside:MYVEM-1 ID=29220 seq=0 len=42
and the 'show crypto ipse sa' confirm this, but the reply from 192.168.11.12 is not encapsulated :
sh cry ips sa | b 192.168.11.
local ident (addr/mask/prot/port): (192.168.11.0/255.255.255.0/0/0)
remote ident (addr/mask/prot/port): (MYVEM-1/255.255.255.255/0/0)
#pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0
#pkts decaps: 35, #pkts decrypt: 35, #pkts verify: 35
I tried to reset vpn many times, erased the configuration, but the only resolution is to turn off and torn on Cisco ASA.
On cisco router i have a lot of vpn l2l works properly, this problem is present only in the scenario and happens two times in the last month, could be the software version 8.2.(1) ?
Thank you in advance