Сейчас настроил VPN между Cisco 2811 и Allied Telesyn. Все работает. Где же ошибка в конфиге Cisco ASA?Судя по логам они немогут пройти 1 фазу.
sh isakmp sa detail
SA Id ................................. 2
Initiator Cookie .................... 54dbfd5ff9e4ae22
Responder Cookie .................... 0000000000000000
DOI ................................. IPSEC
Policy name ......................... OZC
State ............................... DOING_PHASE1
Local address ....................... xxx.xxx.xxx.9
Remote Address ...................... xxx.xxx.xxx.40
Remote Port ......................... 500
Time of establishment ............... **-***-****:**:**:**
Commit bit set ...................... FALSE
Send notifies ....................... FALSE
Send deletes ........................ FALSE
Always send ID ...................... FALSE
Message Retry Limit ................. 8
Initial Message Retry Timeout (s) ... 4
Message Back-off .................... Incremental
Exchange Delete Delay (s) ........... 30
Do Xauth ............................ FALSE
Xauth Finished .................... TRUE
Expiry Limit (bytes) ................ 0
Soft Expiry Limit (bytes) ........... 0
Bytes seen .......................... 0
Expiry Limit (seconds) .............. 0
Soft Expiry Limit (seconds) ......... 0
Seconds since creation .............. 0
Number of Phase 2 exchanges allowed . 4294967294
Number of acquires queued ........... 1
Sa Definition Information:
Authentication Type ................. INVALID
Encryption Algorithm ................ INVALID
Hash Algorithm ...................... INVALID
group Type .......................... INVALID
group Description ................... MODP512
DH Private Exponent Bits ............ 160
expiry seconds ...................... 0
expiry kilobytes .................... 0
XAuth Information:
Id .................................. 0
Next Message ........................ UNKNOWN
Status .............................. FAIL
Type ................................ Generic
Max Failed Attempts.................. 0
Failed Attempts...................... 0
NAT-Traversal Information:
NAT-T enabled ....................... NO
Peer NAT-T capable .................. NO
NAT discovered ...................... UNKNOWN
Heartbeat Information:
Send Heartbeats ..................... NO
Next sequence number tx ............. 1
Receive Heartbeats .................. NO
Last sequence number rx ............. 0