-- *Cisco Moderator edited this post. All public IP addresses have been changed to nnn.xxx.yyy and nnn.zzz.yyy to mask the actual public network and configuration in this public forum. Please refrain from posting actual IP addresses to reduce security risks involved. --
PC (SSH Sentinal) ----> WEB ----> DSL500 ADSL ----> Cisco 1710 --- Internal Lan
Anyone come across this error message during initiation of an IPSec SA. Under laboratory conditions! the tunnel establishes all ok but using an ADSL Dlink DSL500 modem set for NAT/PAT and so called built-in VPN forwarding, the key exchange works but protocol gets stuck.
Several other mentions on web regarding this problem but nothing on CCO
00:04:56: ISAKMP (0:1): processing KE payload. message ID = 0
00:04:56: ISAKMP (0:1): processing NONCE payload. message ID = 0
00:04:56: ISAKMP (0:1): found peer pre-shared key matching *nnn.zzz.yyy.5
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...