Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Try to set up VPN on ASA5505

I have a new ASA5505 firewall, it's outside interface is 192.168.255.1. In front of it, there is a Cisco router, the outside interface is 220.x.x.x. and internal interface is 192.168.255.254. Now I have configured the VPN for client remote access on 5505, and I set a NAT on the router to map one of my spared public address 220.x.x.24 to 192.168.255.1. However, I received an error message "The remote peer is no longer responding" when I try to connect with the VPN client.

Could someone assist and let me know what did I miss?

Thanks

William

1 REPLY
Silver

Re: Try to set up VPN on ASA5505

The symptom of this problem is that the Linux Client seems to try to connect, but it never gets a response from the gateway device. The Linux OS has a built-in firewall (ipchains) that blocks UDP port 500, UDP port 1000, and Encapsulating Security Payload (ESP) packets. Since the firewall is on by default, you either have to disable the firewall or open up the ports for IPsec communication for both inbound and outbound connections to fix the problem

113
Views
0
Helpful
1
Replies