Pix 515e Site To Site Not Coming Up and Passing Traffic

Unanswered Question

Hi every one I have a question I have a Pix 515E running 

Version 6.3(2)


The I have a costumer that I am trying to set up a site to site tunnel were all my users will roll up under my pat address and access the costumers natted servers. The problem is we and biring up pahse 1 but can not bring up pahse 2 and pass traffic below is the config I have set up on my side I also have static route in my crore pointing all my users to my firewalls ip so all traffic will router to the costumers network via the pix. Any help out there would be great thanks.



access-list to-logs permit ip any host 209.255.139.2




global (outside) 1 63.99.114.245 netmask 255.255.255.255





crypto ipsec transform-set logs esp-3des esp-md5-hmac



crypto map vmap 122 match address to-logs

crypto map vmap 122 set peer 209.255.139.2

crypto map vmap 122 set transform-logs client

crypto map vmap 122 set security-association lifetime seconds 28800 kilobytes 460800

crypto map vmap 123 ipsec-isakmp



isakmp key *********** address 209.255.139.2 netmask 255.255.255.255






mypix# show crypto sa  | beg 209.255.139.2

   remote ident (addr/mask/prot/port): (209.255.139.2/255.255.255.255/0/0)

   current_peer: 209.255.139.2:0

     PERMIT, flags={origin_is_acl,}

    #pkts encaps: 0, #pkts encrypt: 0, #pkts digest 0

    #pkts decaps: 0, #pkts decrypt: 0, #pkts verify 0

    #pkts compressed: 0, #pkts decompressed: 0

    #pkts not compressed: 0, #pkts compr. failed: 0, #pkts decompress failed: 0

    #send errors 0, #recv errors 0



     local crypto endpt.: 65.205.112.100, remote crypto endpt.: 209.255.139.2

     path mtu 1500, ipsec overhead 0, media mtu 1500

     current outbound spi: 0



     inbound esp sas:





     inbound ah sas:





     inbound pcp sas:





     outbound esp sas:




     outbound ah sas:





     outbound pcp sas:

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion