Site-to-Site VPN using PIX 515E and MS ISA Server 2004
I have the following problem. I have setup a site-to-site vpn between my site and a business partners site. My problem is that when he initiates (ISA Server) the vpn tunnel the tunnel is created properly and mutual access is possible. When I try to build the tunnel (PIX 515E) I get stuck in phase II. Any ideas?
I don't find proper debug info (at least nothing that I can understand) using "debug crypto isakmp 3".
Re: Site-to-Site VPN using PIX 515E and MS ISA Server 2004
This could be due to the misconfiguration in the access-lists that define the "traffic to be encrypted". Please make sure that the interesting traffic (traffic to be encrypted) definitions are identical on both sides.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...