03-31-2014 07:22 PM - edited 02-21-2020 07:34 PM
Solved! Go to Solution.
04-01-2014 08:27 PM
You didn't show us the configuration (if any is called) for the ASAs Phase 2 transform-set.
There should be one setup matching your 1921 something like the one in this example:
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/100678-l2l-asa5505-config.html
04-01-2014 08:27 PM
You didn't show us the configuration (if any is called) for the ASAs Phase 2 transform-set.
There should be one setup matching your 1921 something like the one in this example:
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/100678-l2l-asa5505-config.html
04-01-2014 08:58 PM
Hi marvin,
you pointed it right. i got confused with the ASDM, mixinf the transform set NAME and the parameters :
crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
The same transform-set on the 1921 is :
crypto ipsec transform-set myset esp-aes 256 esp-sha-hmac
the 256 parameter was missing on my 1921.
Very silly error, but thank you for pointing this at me :)
Best regards
Florian, From New Caledonia.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: