Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA to router VPN building

Hello guys,

I've got a problem while building VPN tunnel between cisco 1841 router and ASA 5510. The vpn tunnel is coming up only from firewall side.

Equipment is configured as described in this instruction: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00805e8c80.shtml

Who can advise?

4 REPLIES

Re: ASA to router VPN building

Hello Ilya,

Please post us the configs of both sides. There may be an issue with the interesting traffic ACL in router

Regards

New Member

Re: ASA to router VPN building

Hello,

The configs are just the same as in the example. See attachment.

Thanks!

Re: ASA to router VPN building

Configs look valid, try the follwoing

no ip nat pool branch 172.17.63.230 172.17.63.230 netmask 255.255.255.0

ip nat inside source route-map nonat interface f0/0 overload

no ip nat inside source route-map nonat pool branch overload

Run the following debugs in router, then initiate an interesting traffic and paste the debug output

debug crypto ipsec

debug crypto isakmp

Re: ASA to router VPN building

also add this into router

crypto ipsec security-association lifetime seconds 3600

147
Views
0
Helpful
4
Replies
CreatePlease to create content