Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
514
Views
0
Helpful
1
Replies

Another l2l vpn thread

tenzingcisco
Community Member

‎08-26-2009 09:41 AM - edited ‎03-11-2019 09:10 AM

Hi,

I am trying to setup a l2l VPN between an ASA 5510 (os is 8.0(4)) and a PIX 515E.

Then vpn fails with the following messages :

ASA (initiator):

ASA(config)# Aug 26 11:56:54 [IKEv1]: Group = x.x.x.x, IP = x.x.x.x, construct_ipsec_delete(): No SPI to identify Phase 2 SA!

Aug 26 11:56:54 [IKEv1]: Group = x.x.x.x, IP = x.x.x.x, Removing peer from correlator table failed, no match!

PIX :

onair-gva-ops-fw-01# Aug 26 17:16:20 [IKEv1]: Group = x.x.x.x, IP = x.x.x.x, QM FSM error (P2 struct &0x618a4d0, mess id 0xffe4ece3)!

Aug 26 17:16:20 [IKEv1]: Group = x.x.x.x, IP = x.x.x.x Removing peer from correlator table failed, no match!

Attached are my configs.

Thanks for your help i am starting to scratch my head. . .

Labels:
23094-asa.txt
23093-pix.txt
0 Helpful
1 Reply 1

acomiskey
Level 11
Level 11

‎08-26-2009 10:50 AM

You have no isakmp policies set on the ASA.

ex.

isakmp policy 10 authentication pre-share

isakmp policy 10 encryption 3des

isakmp policy 10 group 2

isakmp policy 10 hash md5

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card