VPN Phase-2 down?
,
ZAP
ZAP
Hi Everyone,
Consider a scenario that site to site vpn tunnel is build between two ASA's, Phase -1 is up and it shows MM_Active but the issue is with Phase -2
apart from checking transform set parameters on both ASA's, please let me know what are all other troubleshooting steps to follow to make Phase -2 UP.
Thanks in Advance.
- Arjun
- Total 1 Answer
- 2891
.jpg)
On ASA VPN is pain sometimes -;
1)For Phase 2
Please check intresting traffic ACL on both ends.
2)IF CA is used for authentiation
Please check peer id related issues.
Trustpoint should be defined.
If error is peer id certificate validation failed in that case you have to run
no ignore ipsec-keyusage under crypto ca truspoint configuration.
Please share the error you are getting .
Recommended
- How can you guarantee a job for students who has no experience in Networking field?
- How to configure VPN between Cisco Router and ASA Firewall?
- How to configure RIPV2 with no auto summary?
- How to configure PAT (Port Address Translation)?
- How to configure Default Routing on Cisco Routers?
- What is the scope of CCNA course in India?
- What is scope of CCIE?
- How to remember 7 layers of OSI Model?
- How much salary can we get after doing CCNA course in Delhi Gurgaon?
- How many CCIE’s are there worldwide?
- Is it possible to pass CCIE Certification in 1st attempt?