Hello! Friends! I need your advice. I do not have ideas. May be you can help me.
So a have two offices (office 1 and office 2), for it connecting i used cisco asa 5510 and VPN between it. (site2site)
office 1 - 192.168.101.0/24 office 2 - 192.168.104.0/24
Computer from 192.168.101.0 (192.168.101.12) can see device in 192.168.104.0 (192.168.104.2). All good.It reverse direction - too. All good.
But if I switch on special encryption program om this divices (it use UDP 55777). This diveces do not see each other. They must work used only this udp port.
So what i did. Provider does not close this port. I capture trafic on both sides - a see that udp traffic 55777 goes to VPN tunnel (come out of the VPN or not-I do not know how to look)
Access lists - all traffic allow.
If ip working normal, why i have problems with udp? May be ASA blocked it? I do not know.
If i understand correctly in the VPN tunnel, your UDP Traffic dropping ?if this correct
look at the below : guide allow require UDP ports
if this is not the case, can you provide the logs from ASA ?
Thank you for your time!!! I have read. What i have:
ASA office 1 :
UDP OUTSIDE 192.168.104.2:55777 BIO 192.168.101.12:55777, idle 0:00:09, bytes 6145, flags -
ASA office 2:
UDP OUTSIDE 192.168.101.12:55777 BIO 192.168.104.2:55777, idle 0:00:22, bytes 6065, flags -
Since we do not have full logs, i can only suggest at moment to Create a Rule to allow that port and check.
we need to complete transaction log of communication why this was failed to connect each other.
and post the config if possible before and after/