09-09-2015 05:02 AM
Hi,
I configured a IPSec Site to Site VPN between 2 Cisco ASA 5515X on ASA 9.4.1.
After configuration, on remote site, I got this erreur "Deny inbound protocol 50 src outside: central@IP dst outside: remote@IP."
I had to "enable traffic between two or more hosts connected to the same interface" to make it working...
Is this normal?
Thanks for your help,
Patrick
09-09-2015 05:17 AM
Protocol 50 means ESP which is blocked.
If you can provide more information about the interfaces then only we can understand clearly.
09-09-2015 05:46 AM
I thought Cisco ASA would unblock ESP 50 automatically for the peer I configured for Site to Site on IKEv2...
2 Cisco ASA are on Internet and communicate with their outside interfaces
Which information do you want?
Thanks !!!
Patrick
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide