Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1005
Views
0
Helpful
1
Replies

ASA L2L VPN cant ping

mickyq
Level 1
Level 1

‎10-01-2018 07:20 AM - edited ‎02-21-2020 08:18 AM

I have several remote sites using ASA5505 terminating on a FPR2140 ASA. All worked fine until i moved the VPN's to a new internet feed. Now all traffic, SNMP etc work ok but pings dont work so monitoring system cant show them as up.

one site is still working. they all have the same config applied at both ends. Attached is the packet trace for the working and a none working site. why does icmp not get through the encryption.

Preview file
6 KB
Preview file
8 KB
0 Helpful
1 Reply 1

mickyq
Level 1
Level 1

‎10-02-2018 06:41 AM

Should anyone have this issue try moving the icmp acl to the top of the list. that fixed it for me. Cant believe it took days to work that out :-(

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card