Solved

Site to site VPN

Posted on 2007-11-29
2
593 Views
Last Modified: 2008-10-14
I am setting up a test with 2 windows xp pcs and 2 Cisco ASA 5510 appliances. I have the 2 ASA devices connected togethe via ethernet and the 2 windows pcs are plugged directly into the respective ASA firewalls.

I should be able to ping the remote PC and get a reply, but it doesnt seem to be working. Followed the wizard, the only thing I can think of is that the device didnt come with a liscense for VPN.
0
Comment
Question by:dwarner8
2 Comments
 
LVL 28

Accepted Solution

by:
batry_boy earned 250 total points
Comment Utility
The ASA comes with VPN functionality built in, both for remote access and site-to-site VPN capability...no special licensing required.

Have you verified that the VPN tunnel is up?  From the command line interface, you can issue the command:

sh cryp is sa

and it will say something similar to the following if the tunnel is up:

1   IKE Peer: xxx.xxx.xxx.xxx
    Type    : user            Role    : responder
    Rekey   : no              State   : MM_ACTIVE
2   IKE Peer: xxx.xxx.xxx.xxx
    Type    : user            Role    : responder
    Rekey   : no              State   : MM_ACTIVE

If the tunnel is up, then you should be able to ping the other client PC as long as the crypto access list is correct.  Post the output of both the following commands to further troubleshoot:

sh cryp is sa
sh cryp ip sa
0
 
LVL 1

Author Comment

by:dwarner8
Comment Utility
THanks
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Internet Data Cap Based On MAC Address 10 99
Cisco WLC 2504 Roaming Issue 12 92
SonicWall Pro 300 Firmware 2 58
SRX240 SYSLOG Setting 6 50
Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now