[c-nsp] ASA EZVPN config
Ahmad Cheikh-Moussa
acm at netuse.de
Fri Apr 27 15:27:33 EDT 2007
Hi!
I've got a new ASA5505. I want to configure it as EZVPN Remote client.
If the tunnel is up, then I can reach everything behind the ASA but not the
ASA's outside IP Address. The EZVPN Server is an IOS gateway.
When I activate the management tunnel feature, then I got another strange thing.
When I use this command vpnclient management tunnel 1.1.1.1 255.255.255.255,
where the IP 1.1.1.1 is in this example my ezvpn gateway then the tunnel
works without any problems, but I got this error on the console :
asa-test# WARNING: <_vpnc_acl> found duplicate element
IF I use another IP, then this error does not occur, but then
I got the problem that I can not reach the outside IP address again.
I got this error, when I try to establish a ssh connect to the outside
IP %ASA-4-402117: IPSEC: Received a non-IPSec packet (protocol= TCP) from ...
A similar config with a PIX 501 works without any problems ?
Any ideas ?
Any hintes ?
Regards,
Ahmad
--
Ahmad Cheikh-Moussa
NetUSE AG
Dr.-Hell-Straße, 24107 Kiel, Germany
Telefon: +49 431 2390 400 -- Telefax: +49 431 2390 499
Service: Service at NetUSE.DE -- http://NetUSE.DE/
Vorstand: Andreas Seeger (Vorsitz), Dr. Roland Kaltefleiter, Dr. Jörg Posewang
Aufsichtsrat: Detlev Hübner (Vorsitz)
Sitz der AG: Kiel, HRB 5358 USt.ID: DE156073942
Diese E-Mail enthält vertrauliche oder rechtlich geschützte Informationen.
Das unbefugte Kopieren dieser E-Mail oder die unbefugte Weitergabe der
enthaltenen Informationen ist nicht gestattet.
The information contained in this message is confidential or protected by
law. Any unauthorised copying of this message or unauthorised distribution
of the information contained herein is prohibited.
More information about the cisco-nsp
mailing list