Icmp unreachable rate-limit 1 burst-size 1
Same-security-traffic permit inter-interfaceĪccess-list HQFTPACL extended permit ip object net-local object net-remote Xlate per-session deny udp any6 any6 eq domainĭescription TO THE BRANCH ROUTER OUTSIDE 10.1.1.0/30 NETWORKĭescription TO THE BRANCH INSIDE 10.1.10.0/24 NETWORK
Xlate per-session deny udp any6 any4 eq domain Xlate per-session deny udp any4 any6 eq domain Xlate per-session deny udp any4 any4 eq domain
#CISCO 5505 ASA WITH IPSEC TUNNEL PASSWORD#
: Written by admin at 14:49:01.099 UTC Fri Dec 3 2021Įnable password 8Ry2YjIyt7RRXU24 encrypted : Hardware: ASAv, 2048 MB RAM, CPU Pentium II 2000 MHz I'm not sure what the issue is?Įdit: Also worth noting that the ASA does not respond to pings from the HQ network to it's inside interface. I've added both the outside and inside interface addressed for HQ-FW1 just in case the source address is getting NAT'ed but it hasn't helped. When I try to connect there is no response and from looking at Wireshark there is no response coming back from Branch-FW1 at all (no SYN-ACK packet). However I cannot get an SSH connection from HQ-PC2 to Branch-FW1. I can also SSH into Branch-PC2 from HQ-PC2 showing that SSH does work over the tunnel. I have SSH configs which work for both ASAs and from their respective inside networks (Branch-PC2 -> Branch-FW1 and HQ-PC2 -> HQ-FW1) I can successfully connect with authentication performed through the HQ-AAA-Server node. I have a functioning L2L tunnel between two ASA devices (HQ-FW1 and Branch-FW1 on the diagram).
0 kommentar(er)
