I need organize 2 type of access between 2 asa 5510 - site 2 site and Remote access. VPN Peers are same for both situation.
One of peers has IP address 220.127.116.11 and another has 18.104.22.168 ( sw version 9.1(3) )
peer 22.214.171.124 has 192.168.1.0/24 network and peer 126.96.36.199 has 172.16.1.0/24 (interface inside) and 172.16.2.0/24 (interface DMZ).
Need following configuretion:
192.168.1.0/24 must have access to 172.16.1.0/24 via Site 2 Site VPN
also 192.168.0.24 need access to 172.16.2.0/24 via RA vpn.
When I configure ONLY ONE TYPE VPN Tunnel, it works, but I need BOTH TYPE VPN at same time.
In Log windew I see following errors:
%ASA-6-713905: Group = UserGroup, Username = User, IP = A.A.A.A, Skipping dynamic map SYSTEM_DEFAULT_CRYPTO_MAP sequence 65535: cannot match peerless map when peer found in previous map entry.
%ASA-3-713061: Group = UserGroup, Username = User, IP = A.A.A.A, Rejecting IPSec tunnel: no matching crypto map entry for remote proxy 172.16.2.0/255.255.255.0//0/0 local proxy 0.0.0.0/0.0.0.0/0/0 on interface outside
188.8.131.52 Asa upgrade done short time ago, there was sw 8.2(x) verson before, and both VPN was worked correctly, after upgrade I have reseived erros above.
How can I solve this issue? (SSL VPN not a solution, IPSEC is required).
When we said the word “hybrid” in the past, it usually recalled the image of a new variety of plant or maybe an electric car. These days, it applies to the workplace too.
The future of work isn’t “changing” to a h...
Thanks for attending our Ask the Experts (ATXs) session! Here’s the post-session resources for easy reference.
New to ATXs? An ATXs session, offered at no cost, is an hour of real-time learning led by Cisco experts, who will answer your technology q...
Cisco Secure Endpoint
New packages fit for every organization
Every Cisco Secure Endpoint (formerly AMP for Endpoints) package comes with Cisco SecureX built-in. It’s our cloud-native platform that integrates all your security solutions into one view wit...
Our Cisco experts and guests chat about how the integration of Cisco Secure Firewall + Secure Workload is securely accelerating application delivery by allowing NetOps to start running at DevOps speed, and what that means for business success.