09-21-2007 12:29 AM
I am trying to establish a Site to Site tunnel between Cisco ASA and the Fortinet Firewall. IKE gets established but I am unable to understand why its not going further to establish IPSEC tunnel.
Can anyone help me get this done.
Regards
K.V.Krishna
09-21-2007 07:53 PM
go through this link for troubleshooting crypto isakmp.
troubleshooting crypto isakmp commands.
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_tech_note09186a00800949c5.shtml
HTH
Jorge
09-22-2007 05:42 AM
K.V., can you post your config for the ASA side.
Here are couple of examples for L2L vpn between PIX and a Non-cisco firewall device, in this case is a sonicwall, by looking at these examples you may be able to spot what configuration you are missing in your ASA or the other firewall.
another example between PIX and Fortinet fw.
http://kc.forticare.com/default.asp?id=440&Lang=1
09-22-2007 10:02 PM
Hello Krishna,
Can you post the outputs of "Deb cry is" and "deb cry ips" from the ASA.
- Arul
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide