Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

ISR 2851 L2L VPN WITH ASA5505

Hi Guys,

We have an existing L2L VPN tunnel with five other sites using an ASA5505 firewall. 

Recently, we deployed 5 more firewall to our additional sites, but this time VPN doesn't work.

Our configuration is a mirror of our existing 5505s except for the local subnet and the global IP add.

I have tried to debug the problem by using:

  • debug crypto isakmp—Displays the ISAKMP           negotiations of Phase 1.

  • debug crypto ipsec—Displays the IPsec           negotiations of Phase 2.

and still not getting any viable information.

My question is:

  1. Is there a known issue or limitation with ISR2851 IOS ver 12.4(24)T regarding L2L VPN?

  2. Should I upgrade to the latest and greatest, which is ver 15.1(1)XB (ED)?
  3. What other IPSec CLI or switches could I use to refine my debugging commands?

Your help is greatly appreciated.

Thanks.

JP

1 REPLY
Hall of Fame Super Gold

Re: ISR 2851 L2L VPN WITH ASA5505

Why you blame the router? Most often these things are due to oversights.

Send the debugs here, just remove public addresses.

258
Views
0
Helpful
1
Replies
CreatePlease to create content