- Silver, 250 points or more
I have setup a VPN on an ASA running 8.2 code. Phase 1 and 2 pass, but when I look at the interesting traffic I see this?
|7||Oct 02 2013||14:56:30||713222||Group = 63.x.x.96, IP = 63.x.x.200, Static Crypto Map check, map = Outside_map2, seq = 16, ACL does not match proxy IDs src:63.x.x.200 dst:10.202.90.12|
I definitely have these lines in the config:
access-list Outside_cryptomap_36 extended permit ip host 10.202.90.12 host 63.x.x.200
crypto map Outside_map2 36 match address Outside_cryptomap_36
Any idea what else might be missing?
Its actually not an error but an information message which is telling you that he checked crypto map Outside_map2 16 doest have the match for the interesting traffic which makes perfect sense because teh crypto map you are using is sequence number 36.
Just to let you know that while phase 2 is coming up he checks from the top (which means lower sequence number), and goes though the list of crypto map configured till the time he finds a map.
I hope that it answered your question.