I have setup my VPN from PIX to ASA5540 at attached diagram. On remote site I am doing static NAT since 192.168.100.0/24 subnet overlaps with current internal network.
When the traffic is triggered, it builds ipsec SA but return packets don't come back. However when I trigger it from either side, at least I see the encap at source end and de-encap at remote end.
I need something equivalent to "debug ip packet" on ASA to figure out exact details. What are my debug options? When I use tcpdump on either side servers, I don't see the packets reaching at all. That explains why reply doesn't come back but how to figure out what's causing it?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...