Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN on ASA...after connection, no bytes transmitted or received?

Hey all,

I set up a regular IPsec VPN connection into my work.

THe problem is once i am connected, i cant get to anything on our network. I look at the session on the ASA and no bytes are transmitted or received.

I am sure this is something small...any ideas?

Dustin

11 REPLIES
New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

You mean..no bytes at show crypto ipsec sa?

If yes then enable nat traversal and sysopt permit connection ipsec.

R/g

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

i dont know how to do that?

Can you help me out?

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

oh wait...it is enabled.. im sorry.. i had a brain freeze for a minute... but.. i dont see SYSOPT permit connection ipsec

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

I attached where it isnt TX or RX... let me know what you think... thanks!!!!

Re: VPN on ASA...after connection, no bytes transmitted or recei

show the configuration.

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

see attachment... thank you soo much!

Dustin

Re: VPN on ASA...after connection, no bytes transmitted or recei

try to add this

crypto isakmp ipsec-over-tcp port 10000

group-policy himgvpn attributes

ipsec-udp enable

crypto isakmp nat-traversal

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

I will do.. can you tell me what this does?

sorry i am still learning this stuff.. seems really complicated at times :)

Dustin

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

Just add crypto isakmp nat traversal 10.

Regards,

New Member

Re: VPN on ASA...after connection, no bytes transmitted or recei

I am getting bytes received on the ASA, but none transmitted... i think we are getting close...!!!!!!!!!!!!!

Re: VPN on ASA...after connection, no bytes transmitted or recei

crypto isakmp ipsec-over-tcp port 10000 (IPSec over TCP, Cisco's proprietary, by default uses TCP port 10000)

ipsec-udp enable (IPSec over UDP, Cisco's proprietary, force the other side, if it supports, do IPSec over UDP, by default uses UDP port 10000)

crypto isakmp nat-traversal (NAT-T, RFC standard, take preference over "ipsec-udp enable". If both peers support NAT-T and NAT was detected in isakmp phase MM3/MM4, they will use IPSec over UDP with port 4500)

1337
Views
0
Helpful
11
Replies