cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1597
Views
0
Helpful
5
Replies

vpn led active

kolawole1
Level 1
Level 1

i establishing a vpn tunnel betwwen 1 asa 5510 and 5 routers 1841.I xas able to establish the tunnel for the first router 1841 however the second show the vpn led of the asa green packets are encrypted but none decrypted and i can not ping from on side to the other here is the output of sh ipsec sa

help

5 Replies 5

Collin Clark
VIP Alumni
VIP Alumni

pompeychimes
Level 4
Level 4

What IP are you pinging from and to? Do these IP's reside on the end point devices or on devices behind the end points.

they reside on both the endpoints and the local subnet

So to be clear you are sourcing the ping from the 130.223.122.0/24 network to the 128.223.125.0/24 network and vice versa.

Please provide "sh crypto ipsec sa detail" output from both sides.

Here is yhr output I am able to ping from the asa console to the router's 130.223.122.0/24 SUBNET but the not from the asa 128.223.125.0/24 lan interface

From the rtr (both console and inside) i am able to ping the asa outside interface where crypto map is applied

Thanks

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: