I have setup a VPN RA on my asa however when I use my PDA or mobile via 3g or 4g connection over the Internet to connect on my vpn gateway, I'm not able to connect. I'm Having this error from the debug on my ASA fw "IKE TM V6 FSM error History" not sure what this is. But when I try on other service provider with 3g or 4g it works, so might be an issue with the ISP. However I want to understand why I get this error? is it an issue about NAT-T from my service provider using my pda or mobile? . below are the logs and config on the ASA 5510
interface Ethernet0/0 nameif outside security-level 0 ip address 184.108.40.206 255.255.255.240
interface Ethernet0/1 nameif inside security-level 100 ip address 10.98.216.58 255.255.255.224
object network vpnclient-network subnet 172.21.200.16 255.255.255.240 description VPN Client IP Address Range
access-list Split_Tunnel_List standard permit 10.98.216.0 255.255.255.0 nat (inside,outside) source static any any destination static vpnclient-network vpnclient-network no-proxy-arp route-lookup
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...