Hi admins I have 3 site-site VPNs with three different Cisco models. The site-site with the ASA 5510 works. However the VPNs with the 515 and the 505 don't work. To exclude the subnets issue, I have selected "one VPN tunnel per each pair of hosts" under tunnel management. The keys are exchanged successfully and main mode completes. However when traffic is inititiated (in either direction) the packet is dropped as encryption fails as there is no valid SA. I have seen several references to this error on SK but none of the suggested workarounds seem to work. Any ideas?? Regards Shiroma
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
