Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

L2L VPN ASA5510 to Nortel Contivity

We are are having some problems getting the tunnel to completely come up. It seems the IKE or Phase 1 completes and then Phase 2 won't complete. I am getting a message about INVALID_ID_INFO and the the process ends and restarts. I have attached the log file. Any help here would be greatly appreciated.

Scott

1 ACCEPTED SOLUTION

Accepted Solutions
Bronze

Re: L2L VPN ASA5510 to Nortel Contivity

The message points to a crypto map problem. Make sure the peer specified on the Cisco points to the tunnel termination point at the Nortel side. Also make sure that the transform set matches along the local and remote proxy identities (ACL).

6 REPLIES
Bronze

Re: L2L VPN ASA5510 to Nortel Contivity

The message points to a crypto map problem. Make sure the peer specified on the Cisco points to the tunnel termination point at the Nortel side. Also make sure that the transform set matches along the local and remote proxy identities (ACL).

Community Member

Re: L2L VPN ASA5510 to Nortel Contivity

I don't manage the Contivity and can only go by what the analyst on the other end is telling me. We have gone over the ipsec config over and over and everything seems to match. We just can't seem to pinpoint where the difference is. We are narrowing traffic down to 4 hosts on our end and 2 hosts on their end.

Cisco Employee

Re: L2L VPN ASA5510 to Nortel Contivity

Scott,

Can you make sure that you have configured "isakmp identity address" on the ASA.

Let me know if it helps.

Regards,

Arul

Community Member

Re: L2L VPN ASA5510 to Nortel Contivity

Arul, I do believe that did it..

Thanks Scott.

Cisco Employee

Re: L2L VPN ASA5510 to Nortel Contivity

Scott,

Thanks for the update! Glad that everything is working.

If you dont mind, when you get a chance could you update the Forum that the answer provided resolved your issue, so others can benefit from similar issues.

Thanks!

Arul

Community Member

Re: L2L VPN ASA5510 to Nortel Contivity

I did and again thanks for the help.

Scott

217
Views
5
Helpful
6
Replies
CreatePlease to create content