cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
866
Views
2
Helpful
3
Replies

Unable to access web server with L2L VPN with ASA 5505

Translator
Community Manager
Community Manager

We are in the middle of deploying an application and we realize the web server (Ubuntu apache) is not accessible through the site-to-site L2L VPN with ASA 5505s and yet the vpn is up. Is it possible to look at the configurations I have. I didn't set it up.

I have attached the configuration of both ASAs

3 Replies 3

BlakeBratu
Cisco Employee
Cisco Employee

Are you able to ping the webserver through the S2S VPN?

Remote-ASA#packet-tracer input inside icmp 192.168.68.100 8 0 192.168.0.100 detailed 

please share the output of packet-tracer above  

Jeet Kumar
Cisco Employee
Cisco Employee

Hi Jimena,

I am not sure if it is already answered or if the issue is already fixed. If not, then I reviewed your configuration and it seems on ASA 2 you have a static VPN tunnel and on ASA1 you have a dynamic VPN tunnel. If the issue is still not resolved, please share the following output and i will try my best to help you out:

  • Show crypto isakmp sa
  • Show crypto ipsec sa
  •  show vpn-sessiondb detail l2l