This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ASG220 9.2 and Cisco ASA

I'm getting desperate now. I have an ASG220 with firmware version 9.201-25. I am trying to get the site to site VPN working between the ASG220 and Cisco ASA 5520. From the logs on both ends the ISAKMP and IPSEC tunnel is established at both ends. On the Cisco side I see packets encaps and packets decaps but also see packets not compressed. The packets not compressed is equal to the packets encaps. Now when I try to ping either end of the Tunnel it fails at both ends. I know the ASA side is setup correctly because I am really good with ASAs and have setup many others on this ASA. I know the problem is on the ASG but cannot seem to get it working. I seen another post on here about getting it to work by adding a SNAP, but when I tried that it did not work either.

Is there any way someone out there can help me work through this problem?

Thanks for any help!

This thread was automatically locked due to age.

Parents

0 Dilster over 10 years ago

I have the ICMP on that tab enabled. I have to route all traffic through the tunnel to the ASA. So even if it is web traffic it goes through the ASA. This way we just have one public shown to the outside world. I tried calling Sophos tech support and they don't seem to know Enterprise setups very well.

Any help would be appreciated!
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Dilster over 10 years ago

I have the ICMP on that tab enabled. I have to route all traffic through the tunnel to the ASA. So even if it is web traffic it goes through the ASA. This way we just have one public shown to the outside world. I tried calling Sophos tech support and they don't seem to know Enterprise setups very well.

Any help would be appreciated!
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data