Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have two ASA 5505's (9.02 firmware) configured to establish an IPSec tunnel across a private network. A web server hangs off the inside of one ASA, while the second ASA has a host connected on the inside that requires access to the server. The outs...
In my current situation, I have two ASA devices (a 5505 and 5520) that are configured to establish an IPsec tunnel over a network which I do not manage.There is currently one host on each ASA which need to communicate. Static IP addresses are used fo...
Here are my packet tracer outputs before and after the NAT config you recommended:ASA1# packet-tracer input inside icmp B.B.1.5 8 0 C.C.5.100 detailedPhase: 1Type: ROUTE-LOOKUPSubtype: inputResult: ALLOWConfig:Additional Information:in 0.0.0.0 ...
I assumed that NAT would not be involved for our setup but after reading about similar configs, NAT instructions always appear to be specified. I'm just not sure how to go about configuring it for my setup, any help is appreciated.
Another thing I've noticed based on the ASA logs is that when pinging from the host behind the 5520, I do not have the exact logs, but both inbound and outbound icmp connections are built before being torn down. When pinging from the host behind the ...
After ensuring tunnel is not active and attempting to ping from the host behind 5505, ping requests time out, but the tunnel is established as apparent below:show crypto isakmp saIKEv1 SAs: Active SA: 1 Rekey SA: 0 (A tunnel will report 1 Active...
