About silric26227

silric26227 · 01-20-2022

As the title says, I have a VPN ikev2 tunnel from a Fortigate to a Cisco ASA, but the snmp/ping anything doesnt work on the inside. Also I saw in Forti logging that the traffic is going over tunnel, but on the ASA I don't see any packets on sh cry ip...

silric26227 · 01-25-2022

Also, a capture on outside interface:54: 02:40:03.962978 802.1Q vlan#2 P0 1.1.1.1 > 2.2.2.2: [|udp]55: 02:40:03.971736 802.1Q vlan#2 P0 2.2.2.2.500 > 1.1.1.1.500: udp 80

silric26227 · 01-25-2022

# show run all sysoptno sysopt connection timewaitsysopt connection tcpmss 1380sysopt connection tcpmss minimum 0sysopt connection permit-vpnsysopt connection reclassify-vpnno sysopt connection preserve-vpn-flowsno sysopt radius ignore-secretno sysop...

silric26227 · 01-24-2022

Bump. Any ideas ? I did a packet tracer from an inside IP (lets say .3) to a destination over VPN and looks just fine. Did the same from the IP of the inside interface and it doesn't seem to be placed over VPN. I rechecked access lists and they look ...

silric26227 · 01-20-2022

I have attached the ASA file, I hope that's OK. Will also paste a bit more commands output here:show crypto ikev2 saIKEv2 SAs:Session-id:1, Status:UP-ACTIVE, IKE count:1, CHILD count:2Tunnel-id Local Remote Status Role160520829 1.1.1.1/500 2.2.2.2/50...

silric26227 · 07-06-2021

Same issue, no Identity NAT (due to network overlap) so I cant route-lookup. All the IPs in the LAN behind inside works, just the IP of the interface doesn't. Any idea?

Member Since	‎07-06-2021 12:23 PM
Date Last Visited	‎01-28-2022 01:48 PM
Posts	6

User Statistics

User Activity

Managing ASA over VPN

Re: Managing ASA over VPN

Re: Managing ASA over VPN

Re: Managing ASA over VPN

Re: Managing ASA over VPN

Re: Remote Management Access through VPN on ASA 5505