01-24-2008 01:29 AM - edited 03-11-2019 04:52 AM
I have ASA5510 and having problems while connecting to remote VPN using cisco VPN client.
I will be able to get connect to VPN but not able to ping the remote network IP's and when I look into ASA logs I get the error "regular translation creation failed for protocol 50 "
This error message appears when I try to connect thro' PAT IP.
If i do NAT and configure access-list to allow
udp isakmp
tcp eq 10000
udp eq 4500
esp
it works fine.
As i see some one posted to configure to allow NAT-traversal & inspect ipsec-pass-thru command still its not working.
Also I tried configuring the TAC case collection K85809210
http://www.ciscotaccc.com/kaidara-advisor/security/showcase?case=K85809210
but no luck
Any body has any solution to this problem
Thanks,
Chandru
01-24-2008 06:27 AM
If I understand correctly, you are connecting to a vpn through your 5510? Or are you terminating the vpn at your 5510?
I think you are connecting through the 5510, in which case the REMOTE firewall must have nat-t enabled.
01-24-2008 11:21 PM
yes, iam connecting to a customer VPN through my 5510.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide