I have to configure a site-to-site VPN b/w cisco 3725 and linksys rv042 routers.
Phase 1 and Phase 2 are OK (I have verified this with the show crypto ... comands on the cisco and the log on the linksys). The problem is that no traffic is passing through the encrypted tunnel. The DPD messages sent between the routers are not reaching their destination, so the SA are renegotiated all the time.
I consider that phase 1, phase 2, ACL (allowing esp, ike, etc) are OK, because clearly the SAs are successfully negotiated.
On the remote site, the linksys router is installed. It is connecting to the central site (where the cisco is installed) through the Internet by another linksys router with 3G wireless card. Topology:
I have tested the vpn b/w the linksys and the cisco by connecting them directly with a ethernet cable and everything was ok.
Any ideas about the MTU or the DPD messages that could cause the problem when using the Internet?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...