We're using an ASA 7.0 to establish L2L VPN tunnels and I'd always have the remote side initiate the tunnel (say pinging our server from one of the customer's server) but I can never get the tunnel to establish by initiating it on our side (pinging the customer server from our server). I know about choosing the proper interface to ping from if using the ASA and that doesn't work either.
I remember finding a link that talked about this but I can't find it now. I think the link says the configurations on both sides have to match exactly but it still doesn't work for me.
It just seems that the tunnel can only be initiated by traffic from the remote side of the ASA (or the VPN Concentrator - which is what we used to use). But what is getting me more confused is, I have successfully set up two of our office sites with an ASA on both ends so where's the remote side of the ASA if both VPN peers are ASAs?
If someone can straighten this out or provide a link that can explain this, I'd really appreciate it!
Hi,Is there any easy way to view / report on when an endpoint (Mac Address) was first added to the ISE DB? and when it was last seen?and related; when an endpoint first authenticated and last authenticated (as endpoints can be added to the DB via SNMP que...
In our existing virtual SMA appliance is in Internal zone and ESA appliances are in DMZ. We are now deploying a new SMA appliance as a replacing for our existing virtual SMA device.We are enabling secured centralised SPAM Quarantine access to employees th...
Hi,Is it possible to configure HA cluster where one node has a link to ISP A and second node has a link to ISP B ? I'm aware of problems with routing configuration but for me it seems possible to achieve. Anyone did this ?
When running show version on an ASA5508X, I get the following warning :FPGA UPGRADE Version : 2.2FPGA GOLDEN Version : unavailableWARNING: Platform FPGA version is older than minimum recommended image. I haven't found any documentation on how to upgr...