VPN site-to-site does not not between PIX515e and ASA5505
Hello
I was hoping that someone could help me to get this vpn to work. IPSec tunnels are not and I noticed the error:
| 3 | August 9, 2011 | 05:13:26 | IP = 39.188.41.188, error during load processing: payload ID: 1 |
Read on this it seems that this could be a problem of IKE, but I am struggling to find the cause (not helped by the News 8.4 orders).
The configuration is as follows: -.
Head office
PIX515e v6.3 (4)
IP LAN 10.0.160.254/24
Branch
ASA5505 v8.4 (1)
IP LAN 192.168.47.254/24
I have attached the configs - can someone help me with this?
See you soon,.
Huw
Huw,
1. you do not have an ISAKMP policy that corresponds to the remote site (BTW, you do not have a lot of policies of serving, you may want to consider cleaning your config before adding a new policy)
HQ you have this:
part of pre authentication ISAKMP policy 20
ISAKMP policy 20 3des encryption
ISAKMP policy 20 md5 hash
20 2 ISAKMP policy group
ISAKMP duration strategy of life 20 86400
You need this on remote sites:
IKEv1 crypto policy xx
preshared authentication
3des encryption
md5 hash
Group 2
life 86400
2. your interesting traffic is not appropriate:
At the remote sites, you must
the DM_INLINE_NETWORK_1 object-group network
object-network 10.0.160.0 255.255.255.0
object-network 192.168.1.0 255.255.255.0
access extensive list ip 192.168.47.0 outside_cryptomap allow 255.255.255.0 DM_INLINE_NETWORK_1 object-group
On the AC:
name 10.0.160.0 ENO_LAN
name 192.168.47.0 EASTMOORS_LAN
outside_cryptomap_20 ENO_LAN 255.255.255.0 ip access list allow EASTMOORS_LAN 255.255.255.0
Need to add this:
inside_outbound_nat0_acl ENO_DMZ 255.255.255.0 ip access list allow EASTMOORS_LAN 255.255.255.0
Once you have applied these changes try to ping through the tunnel. If this still does not please take a show crypto isa's and see the crypto ipsec its on both sites.
Thank you.
Raga
Tags: Cisco Security
Similar Questions
-
A particular Web Site does not load
A particular website does not load, and I was previously able to view this site about 2 weeks ago. It's a free WordPress site/blog.
I keep getting the error message "The connection to the server was reset while the page was loading." I've tried deleting all cookies and emptying the cache with no success. I also tried a "DNS Flusher" with the same result.
I followed all the recommendations on the link using Firefox and checked the FAQ and community sections with no luck.
I can view the page in Safari. The owner of the website can view this website using a configuration similar to mine (Mac OS 10.5, Firefox 12.0).
Nothing I know have changed since I was able to view this site 2 weeks ago for example, I'm not going through a proxy server, nor do I have any secondary security or anti-virus running.
Any help would be appreciated.
This Web site does not work with a Firefox 12 user agent.
13 Firefox works, so it would be best to install Firefox 16 because it is the last version that works on your operating system.See also:
-
Google and other Web sites does not work after installing Bitdefender Internet Security.
After that installation of the version of Bitdefender Internet Security offered to the 60-second-anti-virus plugin for Firefox of Bitdefender, a number of sites have stopped working. First of all, I cannot change my homepage, because the connection hangs, and Web site does not open. In addition, tries to connect to a number of Web sites (Google, Youtube, Yahoo, DuckDuckGo, etc.) created this site:
"Secure connection failed".An error occurred when connecting to www.google.com. The server has rejected the transfer protocol because the customer to a lower version of TLS on the server supports. (Error code: ssl_error_inappropriate_fallback_alert)
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem."
In short, a lot of great websites do not work and are seriously harming my ability to work. Bing works as a site search engine that I can go to, but not as a home page. I desperately need help with this problem...
Hi pokator, can you try disabling ssl scanning in bitdefender options and see if that makes a difference?
http://www.BitDefender.com/support/what-to-do-when-security-certificates-cannot-be-verified-installed-1090.html -
"Never include as Top Site" does not
OS X 10.11.4
Safari 9.1
On a page of Top Sites, the selection of the X - box for 'Never include as Top Site' does not work. The same top site of the unwanted page reappears even if I have previously deselected it. Is there a way to fix this? I guess from a configuration file somewhere must be removed and rebuilt? Thanks for any help
The preferences of TopSites is maybe damaged.
Quit Safari.
Open the Finder.
In the Finder menu bar, click go > go to folder
Now, copy and paste the following text:
~/Library/Safari/TopSites.plist
Then click OK, and then place the TopSites.plist file in the trash.
Relaunch Safari then try TopSites.
-
How can I disable the 'top sites' history of cleaning does not remove this and confusing and a risk to privacy.
It also serves as the sites I want to keep are my favorites
Is there an alternatively an add-on for thisHi Wayne_a,
If you are concerened about your privacy you can turn off this feature:
-
Sites does not not unless recharge clicked several times
Title says it all. Since the installation of FF 9.0.1 frequently a site does not (circle in the round course) until charging is clicked several times.
Can you provide a url or two in such a case, more like a dense traffic problem.
-
Driver chipset on the HP support site does not load correctly. All other drivers will charge properly. Can someone point me to a chipset driver that is installed correctly?
Thank you!
Hello:
Try the one directly from Intel...
A 2nd on the left side of the page is the automatic installation file.
https://Downloadcenter.Intel.com/download/20775/Intel-chipset-device-software-INF-Update-utility-
-
Many web sites does not not with correct format minus 8.0
Many web sites does not not with correct format minus 8.0 but work fine with IE. At first glance, my internet connection has problems because the text was load but the format and images had problems, but not the internet connection. Example is www.msnbc.com or www.blueovalnews.com
Clear the cache and cookies from sites that cause problems.
"Clear the Cache":
- Tools > Options > advanced > network > storage (Cache) offline: 'clear now '.
'Delete Cookies' sites causing problems:
- Tools > Options > privacy > Cookies: "show the Cookies".
Start Firefox in Firefox to solve the issues in Safe Mode to check if one of the extensions or if hardware acceleration is the cause of the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > appearance/themes).
- Makes no changes on the start safe mode window.
- https://support.Mozilla.com/kb/safe+mode
-
Logo of security for financial sites does not appear
Logo of security for financial sites does not appear since the upgrade from 3.6 to 6.
In Firefox 4 and later you no longer have the Status bar which showed the padlock in previous versions of Firefox.
The padlock shows only that there is a secure connection and does not guarantee that you are connected to the right server.
So you could always be connected to the wrong server if you make a typing mistake in the URL and someone said that mistyped the URL.
The lock feature has been replaced by the How do I know if my connection to a Web site is secure? on the left end of the address bar.See also:
- http://www.dria.org/WordPress/archives/2008/05/06/635/
- https://support.Mozilla.com/kb/site+identity+button
- http://www.Mozilla.com/en-us/Firefox/security/identity/
You can use this extension to get a lock on the address bar.
-
My web site does not load with firefox, it's ok with google chrome
My web site does not load upward with firefox, google chrome, it loads well
Please click the button solved it next to the answer that meets or solved your problem of Firefox support, it appears when you are connected, so this thread is marked as solved to help other users who may have this same problem.
-
The Web of Toshiba site does not recognize of my drive hard number and P/N
Hello
There is a little less than two months, I bought my HDD Toshiba Canvio Basics 3.0 from Amazon. The hard drive has stopped working for some reason any (I drop or something, it simply stopped working).
Of course, I was trying to use my warranty to repair or Exchange it, but the Web of Toshiba site does not recognize my serial number and product number. They are just there, black and white on the sticker on the back of my hard drive, but the site says they are not valid.
Someone has an idea what is happening? I would rather not throw 50 euros by the window for less than two months of use.
Product number is HDTB105XK3AA - and not to HDTB105 * E * K3AA like some sites say (including Amazon).
Thanks for your help.
Stand by. Have you contacted Amazon using Amazon options for repair under warranty or Exchange?
Check please help Amazon option and collect detailed information on defective, damaged or significantly different returns.
Two years ago I had problem with the mobile phone bought by Amazon and I send direct Amazon with bill Amazon.
By the way: can you please post the link where you have tried to check the serial number of your HARD drive?
-
A banking site does not open, detect that the DNS is not responding.
facing problem by opening a bank site.
a banking site does not open, detect that the DNS is not responding. Is this problem on the site of the Bank everyone or internet connection problem mine?Hello
1. which version of the Windows operating system is installed on your computer?
2. What is the error message or an exact error code?
3. this phenomenon occurs only at a particular Web site?
4. what version of IE are you using? (If you use Internet Explorer)
I would sugget you follow the methods and the chcek below if it helps.Method 1: Find out what version of Internet Explorer you are using
a. open Internet Explorer by clicking the Start button, and then click Internet Explorer.
b. press ALT + H and then click on about Internet ExplorerMethod 2: Follow the link and check if that helps.
Warning: Reset the Internet Explorer settings can reset security settings or privacy settings that you have added to the list of Trusted Sites. Reset the Internet Explorer settings can also reset parental control settings. We recommend that you note these sites before you use the reset Internet Explorer settings
Method 3: You can also follow the link and check if it helps.Warning: Reset the Internet Explorer settings can reset security settings or privacy settings that you have added to the list of Trusted Sites. Reset the Internet Explorer settings can also reset parental control settings. We recommend that you note these sites before you use the reset Internet Explorer settings
It will be useful. -
Software LJ 2055dn - FTP site does not?
Hi people, tried to download the installer for the Laserjet 2055dn but the HP FTP site does not respond. Can someone give me a HTTP link for the installation of the complete software for the United States / Europe?
Much obliged if you can help!
Hello
I have no problem with them (I mean, I took 5 of them randomly). You can try a different browser to see any good - I use Firefox.
Please try this and let me know that it does not work:
http://ftp.HP.com/pub/softlib/software11/COL33807/LJ-84320-1/P2055_default_install_v6.1_ww.exe
Kind regards.
-
Acer site does not correctly display the specification.
Acer site does not correctly display the specification.
Example when you click on the link on M5 Explorer - 581 T-6405 please as to the specification of the model of S7-191-6447. Please check
Thank you bring to our attention. We will ensure that it is transmitted.
-
update from Sony site does not recognize my OS.
I run windows vista edition Home premium on my vaio. update from Sony site does not reconoize my BONES. help Sony tech was unable to solve the problem after 15 contacts over a period of 2 years. I was not able to get the vaio updates since the question has been raised.
I'm sorry, but your problem seems to be with Sony.
Sony is responsible for all their updates for Vista operating system support, they delivered, not Microsoft.
See you soon. Mick Murphy - Microsoft partner
Maybe you are looking for
-
Disappointed on the Apple Support
I'm very disappointed on the Apple Support, my Apple ID has been compromised, and 2 devices Apple cannot use for almost 3 months. I had reported my case since April 7, 2016 and talked to little advise so far, to date still my case still sort and all
-
Installation of Media Player Express on Satellite A100-847
Hello To cut a long story short: I replaced the HARD drive of my laptop for bigger and so I had to restore my system. He had no problem with that. But I have no Express Media Player recover disc! I read a few topics, saying that this disk image is wi
-
Original title: problem installing Webroot for MSN (part of the Internet software of MSN Premium subscription) Try installing Webroot to MSN but when I run the installer, I get "error 5: access is denied" and "Setup could not create the directory"C:;
-
How can I keep my old acer xp keep the sound on the taskbar icon
I usually have no problem keeping my sound icon on the taskbar, now whenever I shut down, he disappears again even after apply
-
Bridge WRT120 and WRT54G wireless?
I have a WRT120 connected to my modem by cable in the bedroom of my house before. The signal is very weak in the room from behind, so I would use my WRT54G spare as acess point/bridge to extend my wireless range. Is this possible without cable?