Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
530
Views
0
Helpful
2
Replies

VPN Drops after phase 2 establishment

simran2642
Level 1
Level 1

‎03-06-2012 06:27 AM

Hi,

I have a Site to Site VPN between ASA and ForeFront TMG. I am able to establish the tunnel. However, the moment pahse 2 is established, the very next second tunnel is dropped.

On ASA, I get to see... received delte SA message

And on ForeFront Iget to see the below message:

tunnel model in two NAT setting is not supported.

Both the VPN peers are behind a NAT device.

Please help.

Labels:
0 Helpful
2 Replies 2

Julio Carvajal
VIP Alumni
VIP Alumni

‎03-06-2012 11:18 AM

Hello,

I think you need to configure Nat traversal on the ForeFront TMG side.

Regards,

Julio

Do rate all the helpful posts

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

simran2642
Level 1
Level 1
In response to Julio Carvajal

‎03-09-2012 10:17 AM

NAT - T is already enabled...

0 Helpful
Customers Also Viewed These Support Documents