Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
484
Views
0
Helpful
1
Replies

Asymmetric NAT

Rafael Jimenez
Level 4
Level 4

‎09-05-2012 10:16 PM - edited ‎03-11-2019 04:50 PM

I need help with a ASA5505-SEC-BUN-k9 configuration.

the version is 8.4.

its a simple setup , I have a outside with a public ip, a inside with a 172.16.1.0 network.

I setup the vpn client with ipsec and anyconnect. in both cases im getting the following error :

# show log asdm

5|Sep 05 2012 21:54:38|305013: Asymmetric NAT rules matched for forward and reverse flows; Connection for udp src isp1:172.16.1.46/138(LOCAL\userx) dst inside:172.16.1.255/138 denied due to NAT reverse path failure

6|Sep 05 2012 21:54:39|302015: Built inbound UDP connection 3212 for isp1:172.16.1.46/53100 (172.16.1.46/53100)(LOCAL\userx) to isp1:190.147.134.215/53 (190.147.134.215/53) (userx)

6|Sep 05 2012 21: 5|Sep 05 2012 21:54:38|305013: Asymmetric NAT rules matched for forward and reverse flows; Connection for udp src isp1:172.16.1.46/138(LOCAL\userx) dst inside:172.16.1.255/138 denied due to NAT reverse path failure
6|Sep 05 2012 21:54:39|302015: Built inbound UDP connection 3212 for isp1:172.16.1.46/53100 (172.16.1.46/53100)(LOCAL\userx) to isp1:190.147.134.215/53 (190.147.134.215/53) (userx)

Thanks.

Labels:
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎09-05-2012 11:34 PM

Hello Rafael,

If you need more assistance from us you will need to post the entire config

Regards

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card