01-07-2010 12:14 PM
My topology is as follows
I have a Cisco 1841 that does not manage, because it belongs to my ISP. In this turn I have attached an ASA 5510 that is that I manage myself.
I want to create a connection THROUGH the CISCO VPN client, run the wizard that brings the ASDM. After this run the VPN client and tells me that the VPN is active but I have no connectivity on both sides of the vpn.
The local network is 192.168.0.0 and I'm assigned to the machine that is connecting an ip in the same range.
I hope someone can help me, thanks
01-11-2010 07:10 PM
When you ping from internal host to vpn client, if there is only ping packet, you should see that the incrementing of encrypt count on ASA is equal to incrementing of decrypt count on VPN client. This is echo packet. For echo-reply, you should see that the incrementing of encrypt count on vpn client is equal to the incrementing of decrypt count on ASA.
So, in your testing, which count is NOT incrementing?
01-12-2010 08:03 AM
Here's something interesting, check the counters on both counts, ie I show increased encrypts and decrypts fine. I also did a ping from the ASA ASDM VPN client to the host for the external interface which was satisfactory, it means that packets arrive at the ASA but can not reach the host, I think it could be an ACL issue or problem of NAT . Could you help, Thanks.
01-27-2010 02:15 PM
Thank you for your help.
I could solve the problem by access list to allow traffic
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide