Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
328
Views
0
Helpful
2
Replies

ASA ping host to host

p.maillot
Level 1
Level 1

‎01-15-2009 10:45 PM - edited ‎03-11-2019 07:38 AM

Hello,

I have a problem with this configuration.

172.16.1.2 > ASA5510 > Router 2811 > ASA5505 > 172.16.2.2

ASA5510 can ping host 172.16.1.2 and host 172.16.2.2

ASS5505 can ping host 172.16.2.2 and host 172.16.1.2

but host 172.16.2.2 cannot ping host 172.16.1.2, why?

See the attached file.

Regards

Labels:
Preview file
4 KB
Preview file
5 KB
0 Helpful
2 Replies 2

p.maillot
Level 1
Level 1

‎01-16-2009 10:11 AM

Nobody have an idea?

Regards

0 Helpful

p.maillot
Level 1
Level 1
In response to p.maillot

‎01-17-2009 01:53 AM

My config is.

Host 172.16.1.0/x > ASA 5510 > Router 2811 > Router 871 > ASA5505 > Host 172.16.2.0/x

I have a VPN between Router 2811 and 871

When I ping host 172.16.2.2 from host 172.16.1.2, I can see on router 2811

%CRYPTO-4-IKMP_BAD_MESSAGE: IKE message from 10.52.72.135 failed its sanity check or is malformed

From host 172.16.1.2 to host 172.16.2.2, I can see on router 871

%CRYPTO-4-IKMP_BAD_MESSAGE: IKE message from 10.52.72.129 failed its sanity check or is malformed

What is the problem? VPN encryption is blocked by the ASA?

Regards

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card