Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a problem that is killing me at the moment. One of my sites recently change the public ip and after that I reconfigured the vpn tunnel it seams to go up and down 50-60 minute. See attached document which include both config and debug. Thanks i...
I have a site to site vpn connection between ASA 5510 and PIX 515 which is working fine. There is no problem for hosts on any side of the tunnel to access a cross. However the local ip (192.168.20.1) on the client interface of my PIX is not allowed t...
I have problems with NAT several vlans.I have specify nat from any to outside and I'm able to "get out":object network any-outnat (any,outside) dynamic interfaceHowever I don't have any other access between vlan configured on my firewall. Can anyone ...
Hi all,I have two pix with a tunnel between them and both have full access to outside. As it is today all local networks use the local pix to get access to outside. What I would like to do is to route all outgoing traffic for one port via a dedicated...
Hi,I just configure VPN for end users in PIX515e with IOS 8 and get stuck with "Tunnel Rejected: User (msveden) not member of group (VPN-shared), group-lock check failed.". Can someone please help me and tell me how I add user to my VPN group?Regards...
I think I'm victum to bug... CSCtq57752The workaround to the bug is to lower the crypto map's timed lifetime and increase the crypto map's traffic volume threshold:crypto map *YOUR-CRYPTO-MAP ID* set security-association lifetime seconds 3600crypto m...
Can you please send me a set by step guide and I will setup the tunnel from scratch. I was previously following Cisco ASA Site-to-Site VPN Configuration (Command Line): Cisco ASA Training 101
Hi David and thanks for your answer. I attach config from both firewalls.You are probably right about that the problem is not with the tunnel itself since it still works between fw1 client network to fw2 server network once it stopped working between...
I just found out that the tunnel currently works fine from client network on FW1 to server network on FW2 but not from server network on FW1 to server network on FW2. Can there be any problem with my nat or static?
