Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Changing hardware interface breaks L2L VPN?

We had a L2L VPN tunnel between our two offices. The remote office had problems with their Internet router so the ISP replaced a bad interface on it. Since the change, the tunnel has not been able to connect.

I looked at the log file and searching for the group of the remote office IP peer showed no entried. When I searched the IP just as a Client Address, I just get the following (repeatedly) and no other entries for it:

42292 03/22/2007 09:58:01.980 SEV=4 IKE/41 RPT=31831 <remote office peer IP>

IKE Initiator: New Phase 1, Intf 2, IKE Peer <remote office peer IP>

local Proxy Address <our office internal network>, remote Proxy Address <remote office internal network>,

SA (L2L: <VPN profile name>)

42299 03/22/2007 09:59:51.460 SEV=4 IKE/41 RPT=31832 <remote office peer IP>

IKE Initiator: New Phase 1, Intf 2, IKE Peer <remote office peer IP>

local Proxy Address <our office internal network>, remote Proxy Address <remote office internal network>,

SA (L2L: <VPN profile name>)

42302 03/22/2007 10:00:25.960 SEV=4 IKE/41 RPT=31833 <remote office peer IP>

IKE Initiator: New Phase 1, Intf 2, IKE Peer <remote office peer IP>

local Proxy Address <our office internal network>, remote Proxy Address <remote office internal network>,

SA (L2L: <VPN profile name>)

42316 03/22/2007 10:01:04.590 SEV=4 IKE/41 RPT=31834 <remote office peer IP>

IKE Initiator: New Phase 1, Intf 2, IKE Peer <remote office peer IP>

local Proxy Address <our office internal network>, remote Proxy Address <remote office internal network>,

SA (L2L: <VPN profile name>)

42323 03/22/2007 10:02:03.600 SEV=4 IKE/41 RPT=31835 <remote office peer IP>

IKE Initiator: New Phase 1, Intf 2, IKE Peer <remote office peer IP>

local Proxy Address <our office internal network>, remote Proxy Address <remote office internal network>,

SA (L2L: <VPN profile name>)

I've never seen this before. I've cleared the ARP cache on all the routers here in our office but no change.

Any ideas?

1 REPLY
Community Member

Re: Changing hardware interface breaks L2L VPN?

Our office is using a VPN Concentrator 3030 and the remote office is using a Cisco 2600 router.

377
Views
0
Helpful
1
Replies
CreatePlease to create content