we have an ASA5510 for VPN and having up to 100 VPN connection. These are 90 EzVPN and 10 Site-to-Site connections. The ASA5510 is physically installed with its outside interface in a DMZ_VPN_OUTSIDE. In this DMZ we have a Pix515 as central firewall. The VPN connection are all established, so the central firewall Pix515 canÃ't "see" the real ip traffic from the vpn connection, except the encrypted packets between the peer addresses. But in the logging of the central Pix 515 we can see packets with the original subnets which normally have to be tunneled. So I think the ASA5510 does not tunneling all packets. Instead it sends the traffic through its default gateway Pix515. But I do not know know why. Does anyone have a
Re: Packets for VPN not going through the vpn tunnel
I am currently experiencing similar issues. I have about 50 EzVPN and 4 L2L connections. Randomly traffic will not tunnel thorugh some of them although the tunnel is active. My ASA is the outside connection and I am not going any other firewalls. I have tried to clear the crypto ipsec sa and cryto isakmp sa on the ASA but with no luck. It seems a complete reload is the only thing that takes care of it, which is not an acceptable solution since it happens a few times a week.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...