Site to Site VPN Tunnel

Discussion in 'Cisco' started by Cisco563, Jun 23, 2007.

  1. Cisco563

    Cisco563 Guest

    I have a site to site VPN tunnel setup. The network diagram can be
    found at www.virgoletta.com. There are some issues with the VPN
    tunnel. One is why can't I ping devices through the tunnel? Also, if I
    try to telnet into a device from the ASA side to the PIX I am not abel
    to? I looked on the loggs for the ASA and below is the output.
    However, if I try to telnet from the PIX side to the ASA side I can
    telnet but cannot ping. If you need me to post the config for both the
    ASA and PIX let me know.

    Thank You

    single_vf %ASA-7-609001: Built local-host inside:10.1.1.4
    single_vf %ASA-3-305006: portmap translation creation failed for tcp
    src inside:10.178.183.68/1025 dst inside:10.1.1.4/23
    single_vf %ASA-7-609002: Teardown local-host inside:10.178.183.68
    duration 0:00:00
    single_vf %ASA-7-609002: Teardown local-host inside:10.1.1.4 duration
    0:00:00
    Cisco563, Jun 23, 2007
    #1
    1. Advertising

  2. In article <>,
    Cisco563 <> wrote:
    >I have a site to site VPN tunnel setup. The network diagram can be
    >found at www.virgoletta.com. There are some issues with the VPN
    >tunnel. One is why can't I ping devices through the tunnel? Also, if I
    >try to telnet into a device from the ASA side to the PIX I am not abel
    >to? I looked on the loggs for the ASA and below is the output.
    >However, if I try to telnet from the PIX side to the ASA side I can
    >telnet but cannot ping. If you need me to post the config for both the
    >ASA and PIX let me know.



    >single_vf %ASA-7-609001: Built local-host inside:10.1.1.4
    >single_vf %ASA-3-305006: portmap translation creation failed for tcp
    >src inside:10.178.183.68/1025 dst inside:10.1.1.4/23
    >single_vf %ASA-7-609002: Teardown local-host inside:10.178.183.68
    >duration 0:00:00
    >single_vf %ASA-7-609002: Teardown local-host inside:10.1.1.4 duration
    >0:00:00


    Not much to go on there. My speculation at this point would be that
    you have a 'route' statement that should not be there. Do not 'route'
    the remote network to the inside interface.
    Walter Roberson, Jun 23, 2007
    #2
    1. Advertising

  3. Cisco563

    Chad Mahoney Guest

    Cisco563 wrote:
    > I have a site to site VPN tunnel setup. The network diagram can be
    > found at www.virgoletta.com. There are some issues with the VPN
    > tunnel. One is why can't I ping devices through the tunnel? Also, if I
    > try to telnet into a device from the ASA side to the PIX I am not abel
    > to? I looked on the loggs for the ASA and below is the output.
    > However, if I try to telnet from the PIX side to the ASA side I can
    > telnet but cannot ping. If you need me to post the config for both the
    > ASA and PIX let me know.
    >
    > Thank You
    >
    > single_vf %ASA-7-609001: Built local-host inside:10.1.1.4
    > single_vf %ASA-3-305006: portmap translation creation failed for tcp
    > src inside:10.178.183.68/1025 dst inside:10.1.1.4/23
    > single_vf %ASA-7-609002: Teardown local-host inside:10.178.183.68
    > duration 0:00:00
    > single_vf %ASA-7-609002: Teardown local-host inside:10.1.1.4 duration
    > 0:00:00
    >


    The above error messages indicate you are not excluding from NAT the
    local address from the remote side, if you could post you NAT
    configuration as well any ACL's that are applied to the VPN tunnel.
    Chad Mahoney, Jun 25, 2007
    #3
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. John Ireland
    Replies:
    1
    Views:
    1,045
    Claude LeFort
    Nov 11, 2003
  2. a.nonny mouse
    Replies:
    2
    Views:
    1,075
  3. David Mitchell
    Replies:
    0
    Views:
    755
    David Mitchell
    Jun 21, 2006
  4. Trouble
    Replies:
    0
    Views:
    574
    Trouble
    Aug 4, 2006
  5. Trouble
    Replies:
    1
    Views:
    520
Loading...

Share This Page