ASA 5510 (2 outside interfaces for ISP & VPN Failover) Is it possible
I have 2 ASA 5510's in A/P failover using the Management port.
I have failover setup for ISP failover
Int 0/0 (Outside) Primary
Int 0/1 (Inside)
Int 0/2 (Backup_DSL) Backup
Fail over is working perfectly in Int 0/0 goes down Int 0/2 comes up and I can access the internet but for some reason I am unable to bring up a VPN on Int 0/2 is it disabled by design on the 5510 (IOS 7.2)?
Tested for 4 hours with all possible options and can conclude there is some block on the interface stopping VPN's coming up.
Re: ASA 5510 (2 outside interfaces for ISP & VPN Failover) Is it
I would start by posting your config. It sounds like the firewall is not permitting the connection but you should be able to see that in the debugging log. Can you ping the backup interface when it's in Int0/2 from the 1841's? To me it doesn't sound like a interface issue it sounds like a firewall or ACL issue. Make sure you have the following ports/protocols open or your ACL is written like this:
access-list 100 permit udp any host x.x.x.x eq isakmp
access-list 100 permit udp any host x.x.x.x eq non500-isakmp
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...