I have an IPSec tunnel from my Cisco 3845 router to a remote vendor Cisco Concentrator.
I have two data streams from 2 hosts on my side that should go through this tunnel.
Both data streams work, however, once the first data stream brings up the tunnel, and the second data stream starts, it looks like it's trying to initiate a new IKE session to the remote peer instead of using the existing tunnel. A show crypto isa sa reveals multiple MM_Init sessions. This of course fails. And it doesn't matter which data stream starts first.
I have other IPSec tunnels on my router, with multiple data streams, and have no issues with them.
Could this be something to do with the concenterator?
We've confirmed ACLs and ISA/IPSec parameters on both ends match.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...