<div>
Hi,<br />
I guess you connect from home to your office.<br />
How do you connect ? Do you use the Cisco VPN client ? When you are connected, can you check your IPs to see if you get a new one from your vpn ?
</div>


Hi,
I guess you connect from home to your office.
How do you connect ? Do you use the Cisco VPN client ? When you are connected, can you check your IPs to see if you get a new one from your vpn ?

<div>
Umm, he is doing site-to-site, not RAS VPN.<br />
<br />
Can you post debug output of the following on the ASA:<br />
<br />
deb cry is sa<br />
deb cry ip sa<br />
<br />
Without that, it is nearly impossible to say what the issue is.<br />
<br />
kr
</div>


Umm, he is doing site-to-site, not RAS VPN.

Can you post debug output of the following on the ASA:

deb cry is sa
deb cry ip sa

Without that, it is nearly impossible to say what the issue is.

kr

<div>
CCIE8122,<br />
<br />
I'm still new with Cisco and not exactly sure how to use the debug commands. &nbsp;I ran the commands you asked and get an error the command is not found.<br />
<br />
fw# debug cry is sa<br />
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;^<br />
ERROR: % Invalid input detected at '^' marker.<br />
fw#<br />
<br />

</div>


CCIE8122,

I'm still new with Cisco and not exactly sure how to use the debug commands.  I ran the commands you asked and get an error the command is not found.

fw# debug cry is sa
                 ^
ERROR: % Invalid input detected at '^' marker.
fw#



<div>
I was able to fix the problem by recreating the VPN tunnel. &nbsp;Thanks for your help and points will be awarded to you.<br />

</div>


I was able to fix the problem by recreating the VPN tunnel.  Thanks for your help and points will be awarded to you.


<div>
<div class="content wysiwyg-content">
All,<br />
<br />
I created a vpn tunnel between my office (Cisco ASA 5520) and home (SonicWall TZ 170 StandardOS)using 3DES MD5, Aggressive Mode and PFS. &nbsp;My home network is using 192.168.90.0/24 and is connected to the OPT port of the Sonicwall. &nbsp;My office LAN is 10.60.0.0/16 and 10.50.0.0/16. &nbsp;The VPN tunnel is established however I cannot ping across and all my settings look correct. &nbsp;Any ideas?
</div>
</div>


All,

I created a vpn tunnel between my office (Cisco ASA 5520) and home (SonicWall TZ 170 StandardOS)using 3DES MD5, Aggressive Mode and PFS.  My home network is using 192.168.90.0/24 and is connected to the OPT port of the Sonicwall.  My office LAN is 10.60.0.0/16 and 10.50.0.0/16.  The VPN tunnel is established however I cannot ping across and all my settings look correct.  Any ideas?

Site to Site VPN - cannot ping

Internet Protocol Security (IPsec) is a protocol suite for secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite.

Internet Protocol Security

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.