How do I pass traffic through IPSec Tunnel
Posted on 2009-07-06
I have created two tunnels (site to site) on a Cisco ASA 5510 8.0(2) and the tunnels work fine and I can pass ICMP traffic without a problem. I can even pass from the "inside" network, have it translate to a public IP, initiate the tunnel, open it and ping the other side.
However, when I try to pass UDP traffic through it, particularly protocol 132 SCTP, i get the following error:
305006 regular translation creation failed for protocol 132 src VPN:192.168.x.x dst Outside:216.168.x.x
Now here is a couple of things I dont get:
1. If ICMP traffic passes no problem the routes and crypto maps are correct....we have established that my policies work for setting up the tunnels AND that I can pass ICMP traffic across from the source to the destination and back through.
2. There are really no good explanations out there of what this error truly means. So I am just not understanding. Can someone please tell me what to look for here? How to fix it!?!
Also, I can see the traffic arrive at the firewall "inside" interface and then die there.....