Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
907
Views
0
Helpful
1
Replies

VPN L2L phase 2 problem

omar.elmohri
Level 1
Level 1

‎11-17-2008 05:51 AM

Please what can be the reason of this error message:

%PIX|ASA-3-713119: PHASE 1 COMPLETED

%PIX|ASA-5-713050: Connection terminated for peer IP_address. Reason: termination reason Remote Proxy IP_address, Local Proxy IP_address

This message indicates the termination of an IPSec tunnel.

%PIX|ASA-7-713900:Descriptive_event_string.

%PIX|ASA-3-713902 descriptive_event_string

Best regards,

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎11-17-2008 07:44 AM

Omar

It sounds like you may have a mismatch in your crypto access-lists. Could you possibly post the relevant bits of information from each device.

If not check that your crypto-map access-list on each device is a mirror image eg.

If you had this on the Pix

access-list vpntraffic permit ip 192.168.5.0 255.255.255.0 172.16.5.0 255.255.255.0

then on the ASA you would need

access-list vpntraffic permit ip 172.16.5.0 255.255.255.0 192.168.5.0 255.255.255.0

Jon

0 Helpful
Customers Also Viewed These Support Documents