07-10-2008 08:42 AM
Hi,
I have a cisco router 2800, and i want to stablish an vpn encrypted connection with an ASA 5520 (property of a client of my own company)but i can't do it.
I have checked the configurations and the debugs, but I do not see where the mistake can be.
I attach the configuration and the debug gathered in c2800.
Thanks and regards.
07-10-2008 09:22 AM
show full config....
07-10-2008 09:34 AM
Check the transform set configuration, both sides should be indentical..
*Jul 10 16:44:03.589: ISAKMP:(0:1:SW:1): hash verification failed for -1273054243!
07-11-2008 01:52 AM
The transform-set is equal in both sides, I am sure enough of it.
Which can be the meaning and the reason of this line in the debug? Don't you see anything that could be important?
Thanks and regards.
07-11-2008 02:34 AM
07-14-2008 11:56 AM
hi,
check the traffic which you want to encrypt, should be the same on both sides. Also take a look that you do not nat this traffic (asa side) !
look at this example :
regards
alex
07-14-2008 01:17 PM
local_proxy= 0.0.0.0/0.0.0.0/0/0 (type=4),
remote_proxy= 0.0.0.0/0.0.0.0/0/0 (type=4),
what is your crypto ACL on both sides?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide