Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN between two ASA 5520

Good night guys,

I configurated two ASA and the vpn didnt work, what is wrong?

Here is the vpn configuration and the results

crypto isakmp policy 10 hash md5

crypto isakmp policy 10 authentication pre-share

crypto isakmp enable outside

crypto map mymap 10 match address 100

access-list 100 permit ip 172.16.3.0 255.255.255.0 172.16.1.0 255.255.255.0

crypto ipsec transform-set myset esp-des esp-hd5-hmac

crypto map mymap 10 set peer 10.22.12.22

crypto map mymap 10 set transform-set myset

crypto map mymap interface outside

Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)

Total IKE SA: 1

1 IKE Peer: 10.12.28.5

Type : user Role : initiator

Rekey : no State : MM_WAIT_MSG4

2 REPLIES

Re: VPN between two ASA 5520

There are several required entries that seem to be missing from your configuration. Please reference the following document:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080950890.shtml

I would also strongly recommend against using DES encryption and md5 hashing.

New Member

Re: VPN between two ASA 5520

OK Eddie, I ll try

130
Views
0
Helpful
2
Replies