Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN Tunnel shows connected on ASA's but no traffic flows through

I had two ASA's connected via site-to-site VPN tunnel for several months now (and working) and now something has changed that doesn't allow any traffic from one end to the other. My end shows all zeroes on encaps an hundreds of thousands of decaps. While everything looks the same in the configs something has changed to break my connection. Any ideas?

2 REPLIES
Cisco Employee

Re: VPN Tunnel shows connected on ASA's but no traffic flows thr

Hi,

Has something changed with your internal routing for this remote subnet. If you are seeing decaps, it means you are receiving traffic but having issues with the return traffic. Check the routing as well as NAT Configuration (NAT 0) on the ASA.

Also, make sure there are no overlapping IPSEC ACL between difference peers.

Regards,

Arul

*Pls rate if it helps*

Cisco Employee

Re: VPN Tunnel shows connected on ASA's but no traffic flows thr

Arul's right on the money here - we can't really tell you any more without seeing the configuration. It's probably either a routing issue (the traffic isn't being routed back to the ASA) or you

301
Views
0
Helpful
2
Replies