I?m trying to configure VPNs Remote Access in a ASA 7.2.2. However, they doesn?t work, so can anybody tell me, the following topics:
What commands can I use to do thoubleshooting?. I use "debug crypto ipsec", "debug crypto sa",...but I don?t see nothing in ASA.
- The subnet used by the remote clients has to be an internal network. So, have I to route this subnet towards inside?. I have serveral internal networks, and the ASA Interface inside is in a different subnet internal.
Is there any good sample document about these topics?
Also, you stated that nothing showed up on the debugs, that leads me to believe that the udp 500/4500 (IKE) traffic is not making it to the ASA (ISP issue) ir that you dont have isakmp and/or a crypto map applied to the outside interface.
Therre are some good documents online. I have one set up with an ASA running 7.2.1. The pool resides onthe ASA and is routed to it so the replies reture to it. Are you using the normal cisco vpn client?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...