Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi Team,I'm encountering an IPSec VPN issue between a Cisco Router and Cisco ASAv(hosted on AWS EC2) and would appreciate your guidance.**Environment:**- Peer 1: Cisco Router (on-premises)- Peer 2: Cisco ASAv on AWS EC2**Issue:**The IPSec tunnel esta...
Hi There,We have a setup where we have Ipsec established as given belowCisco Router << -- >> NAT instance (ec2 aws hosted) <<-->> ASAv. Now since we are having nat instance and doing translation between hence Ipsec tunnel established using UDP500 an...
Hi There, I have a IpSec tunnel set up as "cisco router <--> NAT instance(ec2 on aws on Public IP) <--> cisco ASAv ( outside interface Private IP)". Tunnel is coming up and connectivity works as well , but I could see the log that the tunnel establis...
Hi There, Need help- we already have purchased a ASAv30 through AWS marketplace as PAYG option, now we also received trail license for ASAv30 and would liek to use that to avoid billing for the Cisco license through AWS market place. Can we do that ...
I have many to one tunnel setup , where left side I have multple networks ( sources end points mostly cisco routers and strongswan virtual appliances) and on right side I have a single ASAv ( cisco asav running on AWS Ec2). Now what I am seeing is tu...
Thanks @Ben Weber I will try the IKEV2 profile setting, i did try earlier but its only giving me option to set the default outside interface privste ip , no option to set public Ip ( EIP of the NAT instance) as the identifier in ASAv. Now i got into...
Is there a way to configure the ASAv so that IPSec tunnel negotiation and establishment appear to originate from the NAT instance's public IP rather than the ASAv's private IP ( in the left side of the network in the cisco router)? This would ensure ...
Hi Rob,We are using policy based VPN and we do not have any PFS used for the setup. Here is the configuration of the CIsco ASAv . fyi- the tunnel in questions is peer ip 172.31.56.230. Also to let you know - the flow for actual traffic is "customer ...
Hi There, I made some progress, after tuning the NAT rules I could see the tunnel is trying to establish , where phase 1 is completed successfully but phase 2 is failing. I am getting "Error code: There was no IPSEC policy found for received TS" . B...
