vpn site-to-site (isa-server2004/CiscoASA 5505)

info0000284 · ‎10-17-2013

hi all,

configuring vpn between isa-server and cisco asa, the vpn go up normally.

I explain below problem

pubblic ip address isa-server 1.1.1.1 /29

pubblic ip address cisco asa 2.2.2.2 /29

on pubblic ip address 1.1.1.1 i have one redirect to site on internal server 5.5.5.5 /24

if i ping ip address 5.5.5.5 traffic goes on vpn correctly,but if I try to reach the ip 5.5.5.5 through the pubblic ip address using then redirect, dont work!

when i add 2.2.2.2 in the network rule on isa server the vpn work correcty but the internal site on 5.5.5.5 dont work.

when i take off 2.2.2.2 in the network rule on isa server the vpn goes down but the internal site through the pubblice ip address work correctly

any idea?

isa server block the traffic on ip pubblic address, becouse it's in network rule for vpn?

ths for reply

info0000284 · ‎10-21-2013

hi all,

I configured the vpn site-to-site between isaserver and asa 5505 but this vpn go up only if the traffic start from side of isa server and never from side the asa 5505.

Moreover, after 8 hours the vpn goes down.

in attach the problem with session ipsec.

set up secure networks, but instead of just being in class c subnet 255.255.255.0 turn out to be with the other.