I cannot resolve this problem..I've a Cisco Pix 515e with ios 7.1 - I want to configure a vpn from another peer (Linux firewall) which want to access all 3 lans behind the pix (eth2, eth3, eth4). The other peer can access to ONE LAN ONLY at every access, but the other 2 lans are not accessible.. Do I have to configure something of special to make it work?
The error on the logs is: "%PIX-3-713042: IKE INITIATOR unable to find policy: Intf 1, Src 172.16.222.18 - Dst: 192.168.10.14".
Explanation This message indicates that the IPSec fast path processed a packet that triggered IKE, but IKE's policy lookup failed. This error could be timing related. The ACLs that triggered IKE might have been deleted before IKE processed the initiation request. This problem will most likely correct itself.
Explanation If the condition persists, check the L2L configuration, paying special attention to the ACLs associated with crypto maps.
First thing to check are your acl's that define interesting traffic on your crypto maps.
Could you post the crypto map access-list from both ends.
I'm not sure about how Linux firewall works but I have seen on some non-Cisco devices, that you need to create a new tunnel for each set of proxy identities. I would sugegst you to confirm if we need to do the same on the Linux firewall.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...