This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Error when trying to establish VPN to Cisco ASA

Hello,

We currently have a UTM 220 connected to several of our Cisco ASAs and are now trying to connect our new UTM 110/120 to the same ASAs. We've followed the configuration on the previous UTM to setup the tunnel between the ASAs and our new UTM however upon attempting to bring up the tunnel we're shown this error in the logs.

"S_Sac-ASA" #3377: ERROR: asynchronous network error report on eth1 for message to [ASA-Public IP] port 500, complainant [ASA-Public IP]: Connection refused [errno 111, origin ICMP type 3 code 3 (not authenticated)]

Could anyone point me at what might be causing the issue?

This thread was automatically locked due to age.

0 BarryG over 11 years ago

Hi,

1. Did you configure the ASA(s) with new tunnel configurations for the 110/120?

2. Are you using IPSEC VPNs?

3. UTM version #? (e.g. 9.108)

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 11 years ago

With only a single line from the log file, all we can do is guess. Is this X509 and have you done the exchange of certificates? If so, are you sure that the FQDNs match the certificates?

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel