12-28-2011 04:50 PM - edited 02-21-2020 05:47 PM
Hi,
I have this situation:
I configure a basic Site to Site IPsec VPN in my lab (it worked), and after that I moved one of the ASAs to a remote end. Now the two ASAs are communicating trough a Layer 3 MPLS link (not important, I think), but I can´t do the tunnel works.
I have connectivity between the firewalls, even between pcs connected to the Firewalls with static NAT.
No isakmp associations, or ipsec as.
The only message I have from the remote ASA is this:
Ignoring msg to mark SA with specified coordinates < DRVPN, 10> dead
Any help will be appreciated.
Regards
.
12-29-2011 08:16 AM
Post your config for review.
12-29-2011 11:23 AM
Thanks Andrew, but I figured it out what was happening: I configured a dynamic NAT in the remote end before the MPLS connection were ready. Without that, all is working. Now, I´m only need and access list in order to separate the traffics.
Regards, and thanks again
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide