Cisco Support Community
Community Member

Help! LAN to LAN Pix to 3015

Ok, I've got 30 LAN to LAN sites configured, up and running on a 3015. But the last one is killing me. It connects for about 20-40 seconds, disconnects and starts over. Here is an exerpt from the 3015 log, the ip's have been changed to protect the guilty...

51245 11/04/2003 16:15:03.480 SEV=4 IKE/41 RPT=8791 IKE Initiator: New Phase 1, Intf 2, IKE Peer local Proxy Address, remote Proxy Address,SA (L2L: Gulf)

51248 11/04/2003 16:15:04.690 SEV=4 IKE/119 RPT=1502 Group []PHASE 1 COMPLETED

51249 11/04/2003 16:15:04.690 SEV=4 AUTH/22 RPT=1435

User connected 51250 11/04/2003

16:15:28.690 SEV=4 IKEDBG/0 RPT=8975 QM FSM error (P2 struct &0x3eb98c4, mess id 0x50eb0a93)!

51251 11/04/2003 16:15:28.690 SEV=4 IKEDBG/0 RPT=8976

QM FSM history (P2 struct &0x3eb98c4): [13, 52], [5, 38], [5, 65535], [2, 4]

51252 11/04/2003 16:15:28.690 SEV=4 AUTH/23 RPT=1401 User disconnected: duration: 0:00:24

Any ideas?


Community Member

Re: Help! LAN to LAN Pix to 3015

I should mention that this is the only DES site, everyone else is 3DES.

Also, if I turn off the network autodiscovery and set the local and remote manually the tunnel comes up and stays up...unfortunately it doesn't show up as a L2L session, it shows as a management session and absolutely no traffic passes through the tunnel. I think there may be a problem with the PIX at the Saudi site, but they will not give me access to it. They did send me the config though, and all looks to be in order.

I have to admit I am totally stumped, I really need to get this up...if anyone can help out I would really appreciate it.


CreatePlease to create content