Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

problem with L2L ASA to Router

We have set  up a VPN between an ASA 5505 and a 1751 router .

That vpn has to replace a previous one between the 1751 and another router .

The VPN is established successfully and I can ping the 1751's internal interface from the ASA's network, but I cannot ping any host behind the 1751 router .

The hosts are fine as they were working before we changed the configuration .

Attached the configuration , I hope some expert can check it and tell me if something wrong.

3 REPLIES

Re: problem with L2L ASA to Router

Hi,

If you can PING the 1751's internal IP from the ASA's network, the VPN is fine.

If you cannot PING any host behind the 1751 through the tunnel, the most common cause is a routing issue.

Is the default gateway for the hosts behind the 1751, the inside interface of the 1751?

Federico.

New Member

Re: problem with L2L ASA to Router

the hosts have a static route for the ASA's subnet , but their default gateway is not the 1751 internal interface

thanks

Re: problem with L2L ASA to Router

If you do a traceroute from the hosts on the 1751 side to the ASA's subnet, do they go through the tunnel?

Do you see packets encrypted on the 1751 ''show cry ipsec sa'' for every traffic sent?

Federico.

191
Views
0
Helpful
3
Replies
CreatePlease login to create content