Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello:
I set up a site-to-site tunnel and added in the associated Crypto Map (see static 6 below). However, in the Protect mode, I cannot ping the far-end from the CitrixServers or vice-versa. However, if I change to Do Not Protect, then I can ping f...
ASA Version: 8.2(2)ASDM Version: 6.2(5)Device Type ASA 5510I see hits in the "Top 10 Access Rules" but see nothing in the "Access Rules" page and the CLI. Does this look like a bug or am I missing something? Thanks in advance!Top 10 Access rules show...
The tunnel comes up fine. It is using the SYSTEM_DEFAULT_CRYPTO_MAP. I still dont know why it is using the Default cryptomap, but it is working, and traffic is flowing.
I can't clear this tunnel now, as there is live traffic on it. Perhaps in the fut...
I do have a dynamic entry in the Crypto Maps (highlighted in blue below):
Here is the output of the show crypto ipsec sa peer command. It shows the SYSTEM_DEFAULT_CRYPTO_MAP is being used (highlighted in red). What configuration mismatch could be ...
To sum it up: I have tested and reproduced this issue in the following releases of ASA and ASDM:ASA 8.2(2) and ASDM 6.2(5)ASA 8.3(2) and ASDM 7.1(4) ASA 8.4(7) and ASDM 7.1(4)ASA 9.1(3) and ASDM 7.1(5)100 Is there any further testing that can be done...
This functionality is still broken in ASA 9.1(3) and ASDM 7.1(5)100. The Top 10 Access Rules shows a hit count, but the Firewall Access Rules still show a 0 hit count (even though the Top 10 is marked in red). The CLI shows the same thing. (config)# ...
