I pretty much use the ASDM for configuring our pair of ASA 5510 and i'm having an issue with the site-to-site VPN's that I setup.
Basically the remote site has a Sonicwall that has dual WAN. Each WAN is configured and so is the VPN tunnel which is bound to "ZONE WAN" which means both of the WAN links.
It seems to cause problems when it fails over and I will get mesasges like: "IKE Initiator unable to find policy dual wan"
Based on my research this is beacuse there is another VPN connection profile using the same Remote Network but has a different peer IP. Well thats the thing is I want there to be two points for the VPN because when the remote Sonicwall fails over it will be coming from another external IP.
So under connectino profiles in ASDM it is like this:
Basically when the remote site fails over to the backup internet the VPN won't establish. I see this on the Cisco ASA 5510 when the backup internet is activated: "Xauth required but selected Proposal does not support xauth"
Here is what I have setup:
Cisco ASA 5510
One connection profile configured with the primary external IP of the branch location
On the crypto map that was generated with the connection profile it is set to bidirectional and I added the backup internet IP to the list of peer IP's
VPN is set to point to the ASA 5510 IP address
The vpn is bound to "ZONE WAN" for the interface
It is set using Main Mode with the password
What am I missing or what do I need to do to make this work properly?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...