I’ve noticed the following when I debug on the router. The router is complaining about not having a matching pre shared key for 10.17.1.2…but that’s the INSIDE interface on the ASA. If I add that in, it gets past that, but still won’t come up. See highlighted below. I’m attaching the configs, and if any of you guys could help shed some light on this, I’d REALLY be appreciative.
I'm really not understanding why it's trying to negotiate against the inside interface instead of the outside interface.
*Mar 8 22:59:56.131: ISAKMP (0:0): received packet from 10.17.1.2 dport 500 sport 1024 Global (N) NEW SA
*Mar 8 22:59:56.131: ISAKMP: Created a peer struct for 10.17.1.2, peer port 1024
*Mar 8 22:59:56.131: ISAKMP: New peer created peer = 0x65310D30 peer_handle = 0x80000016
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...