06-10-2006 12:36 AM - edited 02-21-2020 02:28 PM
Hello All,
We have a ASA 5510 that is configured as a Remote Access VPN Server using Preshared keys. When a Remote VPN Client tries to connect, the phase-1 connectivity gets established but phase 2 fails. The following errors are displayed on the ASA 5510:
Received encrypted packet with no matching SA, dropping
Session disconnected. Session Type IPSec, Reason: crypto map policy not found
Removing peer from correlator table failed, no match!
QM FSM error (P2 struct &0x2f23fc8, mess id 0xf8d08701)!
Rejecting IPSec tunnel: no matching crypto map entry for remote proxy on interface outside
PHASE 1 COMPLETED
Please help
Best Regards,
Manoj Rathod
06-10-2006 05:37 AM
Hi Manoj,
Can you post the VPN configuration? The error was related to the crypto map - either does not exists or not bind to outside interface.
Your config will provide a good clue.
Rgds,
AK
06-10-2006 09:47 PM
06-15-2006 12:52 AM
Hi Manoj,
Sorry for the late reply.
Since your VPN is meant for VPN client that should allow connection from any anywhere, try to remove the "crypto dynamic-map outside_dyn_map 20 match address outside_cryptomap_dyn_20".
Rgds,
AK
06-16-2006 10:44 PM
Hi AK,
Thanks for your advice, I shall try the same and let you know.
Best Regards
Manoj Rathod
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide