I have two ASA's. I have a tunnel up and running between them just fine. However, in an attempt to keep interesting traffic flowing over the tunnel I've config'ed an SLA to ping to a host on the remote side of the VPN. I cannot get it to work. the config:
ASA on which the SLA originates:
sla monitor 1
type echo protocol ipIcmpEcho x.x.x.x interface outside
sla monitor schedule 1 life forever start-time now
access-list crypto_ACL extended permit icmp host outside_int_ip dest_host_net 255.255.0.0 echo-reply
access-list crypto_ACL extended permit icmp host outside_int_ip dest_host_net 255.255.0.0 echo
nat (outside,outside) source static obj-outside_int_ip obj-outside_int_ip destination static obj-dest_host_net obj-dest_host_net
the NAT and crypto on the remote side are the inverse of this....
thanks for any help you can provide.