Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1451
Views
5
Helpful
2
Replies

Site to Site VPN from ASA 5505 to Ubiquiti USG

rcraig1142
Level 1
Level 1

‎02-18-2022 04:58 AM

I've been trying for days to get a site to site vpn between a Cisco ASA and a Ubiquiti USG. I can get as far as phase 1, but thats it. Whatever settings I try to get phase 2 to work, it breaks phase 1 and I start all over. Has anyone ever successfully gotten a tunnel between these two devices to work? 

 

Robert

Labels:
2 Replies 2

Udupi Krishna.
Cisco Employee
Cisco Employee

‎02-18-2022 05:55 AM

I have had my fair share of building site to site vpn between ASA and Pfsense. But never really had much trouble.

If the settings are correct for phase 2, its worth trying debug on ASA for phase 1 and 2.

0 Helpful

MHM Cisco World
VIP
VIP

‎02-18-2022 06:25 AM

the PhaseII start with ID and Pre-shared Key
ID can be change due of NAT between both Peer
Pre-Shared Key if you don't specify the right Peer then IPSec select first longest match and hence the IPSec PhaseII stop there.

this two factor I think which make issue here. 

0 Helpful
Customers Also Viewed These Support Documents