I have configured L2L IPsec vpn between two sites, it worked well for the day, but in the afternoon the user called and complained of losing connection. I had to check the FW on-site, I lost the connection! the connection is based on fixed IPs. I tried all what I know, it didn't come back, I restarted the pix on one site, and the IPsec is back. it happened again.
515E with 6.3 to 525E with 7.21, I reloaded the 515e
I had a similar issue before and upgraded the IOS, it did not help. I later found out that my ISAKMP policy did not match in the DH category. Take a look at your ISAKMP and CRYPTO maps, and make sure they match. If not, you can ZERORISE your RSA and regenerate them
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...