troubleshooting branch ASA remote rechablility to main ASA

Dr.X · ‎03-06-2014

hi all ,

i have

192.168.2.0./24lan1--------asa1--------inteernet--------asa2------lan2192.168.0.0/24

vpn ikev1 is up

and lan1 can see lan2

======================

im sure that i put the remnote lan of asa1 to "any"

but only the traffic to lan2 is being go fine without problems ???!!!

here is a packet tracer

test1 :

when i request 8.8.8.8 i have :

===============================================

wheni request lan2 ip

i have successful :

================================================

i dont know why !!

im sure than i putt the remote subnet to "any" at the asa1 !!

here is wt i mean

==============================================

AGIAN , vpn is ok when i reach the remote side , but i cant reach asa2 if i requested something like 8.8.8.8

why ?

regards

Dr.X · ‎03-06-2014

i founbd that from the cli that the local is 192.168.2.0/24 !!!!

i dont know how that happedn im sure that i changed it by asdm ?!!

i did

show crypto ipsec rsa sa

i didntr see 0.0.0.0/0.0.0.0

!!

stange issue

Dr.X · ‎03-06-2014

i thunk that my problem is here

:

i think i ned to change the

remote idnet to 0.0.0.0/0.0.0.0

how do it from cli ???

Dr.X · ‎03-06-2014

any help ?