Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN Tunnel between ASA and ISA Server 2004

Hi,

I have an environment with ISA and ISA server 2004 and I am trying to create a vpn site-to-site between them, the tunnel is created as output of command "sh isakmp sa," but not anything happening in the tunnel, or the ping command or via terminal services that the tests that were performed, ISA server logs shows the connection initiate but not complete, I am called support to open in microsoft to investigate but would like to think of you below the topology and settings already checked several times in the settings ASA and ISA Server are identical in both the policies of IPSEC and IKE, if anyone have any idea of what might be wrong now thank you.

asa# sh isakmp sa

Active SA: 1

Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)

Total IKE SA: 1

1 IKE Peer: 10.0.0.167

Type : L2L Role : initiator

Rekey : no State : MM_ACTIVE

asa#

regards.

3 REPLIES

Re: VPN Tunnel between ASA and ISA Server 2004

Ricardo,

Try removing pfs - no crypto map outside_map 2 set pfs

Also post the output of:-

show crypto ispec sa

HTH>

New Member

Re: VPN Tunnel between ASA and ISA Server 2004

hi andrew

i remove full settings and create settings again its working. thanks andrew

regards

Re: VPN Tunnel between ASA and ISA Server 2004

np - glad to help.

423
Views
0
Helpful
3
Replies