Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Mixing Site-to-Site and Remote Access

Hi,

On our ASA 5505 we have a working Site-to-Site configuration since a few days.

Now we want to add Remote Access to our network using PPTP or L2TP/IPSec with a Radius server for Authentication. (we used to have a Microsoft VPN-Server which managed to Client Login's)

The Modem/router forwards ESP, GRE, 500/UDP, 1701/UDP, 4500/UDP, 10000/UDP & 1723/TCP to the ASA.

With the Radius (Configuration > Remote Access VPN > AAA/Local Users > AAA Server Groups) tool we can successfull test the Authentication.

The settings are made using the "IPSec VPN Wizard".

Once we try to connect (over the network to the outside interface) we only get errors (See below).

Please help.

Thanks in advance, Jan Breukelman

09-19-2013 14:37:45 Local4.Warning 192.168.10.8 %ASA-4-113019: Group = DefaultRAGroup, Username = , IP = 192.168.5.1, Session disconnected. Session Type: IKE, Duration: 0h:00m:00s, Bytes xmt: 0, Bytes rcv: 0, Reason: Phase 2 Mismatch

09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, Removing peer from correlator table failed, no match!

09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, QM FSM error (P2 struct &0xc9257940, mess id 0x1)!

09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713122: IP = 192.168.5.1, Keep-alives configured on but peer does not support keep-alives (type = None)

09-19-2013 14:37:45 Local4.Warning 192.168.10.8 %ASA-4-113019: Group = DefaultRAGroup, Username = , IP = 192.168.5.1, Session disconnected. Session Type: IKE, Duration: 0h:00m:00s, Bytes xmt: 0, Bytes rcv: 0, Reason: Phase 2 Mismatch

09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, Removing peer from correlator table failed, no match!

09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, QM FSM error (P2 struct &0xc9257940, mess id 0x1)!

09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713122: IP = 192.168.5.1, Keep-alives configured on but peer does not support keep-alives (type = None) 09-19-2013 14:37:45 Local4.Warning 192.168.10.8 %ASA-4-113019: Group = DefaultRAGroup, Username = , IP = 192.168.5.1, Session disconnected. Session Type: IKE, Duration: 0h:00m:00s, Bytes xmt: 0, Bytes rcv: 0, Reason: Phase 2 Mismatch
09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, Removing peer from correlator table failed, no match!
09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, QM FSM error (P2 struct &0xc9257940, mess id 0x1)!
09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713122: IP = 192.168.5.1, Keep-alives configured on but peer does not support keep-alives (type = None)
09-19-2013 14:37:45 Local4.Warning 192.168.10.8 %ASA-4-113019: Group = DefaultRAGroup, Username = , IP = 192.168.5.1, Session disconnected. Session Type: IKE, Duration: 0h:00m:00s, Bytes xmt: 0, Bytes rcv: 0, Reason: Phase 2 Mismatch
09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, Removing peer from correlator table failed, no match!
09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713902: Group = DefaultRAGroup, IP = 192.168.5.1, QM FSM error (P2 struct &0xc9257940, mess id 0x1)!
09-19-2013 14:37:45 Local4.Error 192.168.10.8 %ASA-3-713122: IP = 192.168.5.1, Keep-alives configured on but peer does not support keep-alives (type = None)

231
Views
0
Helpful
0
Replies
CreatePlease login to create content