Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I currently have site to site VPN configured which works fine with the exception of policy NAT. I want to be able to policy NAT traffic coming out of the VPN tunnel destined for the internal network. For instance traffic from remote subnet x.x.x.x ...
I have a vpn setup between a Cisco ASA 5505 and a CP NGX R65. The CP firewall is the remote side. The primary problem is that when a phase 1 rekey occurs it will often fail. Sometimes after a few hours it will come up on its own. At other times I...
Hi,That is correct. I was hoping to avoid NAT'ing on the other side of the tunnel if at all possible. In most cases that is exactly what I would do but I have to NAT to an address on the same subnet as the PIX inside interface due to a host network...
I will check the CP settings but i know PFS is not enabled on the CP side.Here is part of a debug crypto isakmp output from yesterday. Jan 28 13:21:35 [IKEv1 DEBUG]: Group = x.y.z.4, IP = x.y.z.4, IKE MM Responder FSM error history (struct &0xd54801...
