Исходное сообщение
"Не поднмается VPN между Cisco ASA 5550 и Allied Telesyn AR77..." Отправлено jeka64, 24-Июн-09 12:56
Сейчас настроил VPN между Cisco 2811 и Allied Telesyn. Все работает. Где же ошибка в конфиге Cisco ASA? Судя по логам они немогут пройти 1 фазу. sh isakmp sa detail SA Id ................................. 2   Initiator Cookie .................... 54dbfd5ff9e4ae22   Responder Cookie .................... 0000000000000000   DOI ................................. IPSEC   Policy name ......................... OZC   State ............................... DOING_PHASE1   Local address ....................... xxx.xxx.xxx.9   Remote Address ...................... xxx.xxx.xxx.40   Remote Port ......................... 500   Time of establishment ............... **-***-****:**:**:**   Commit bit set ...................... FALSE   Send notifies ....................... FALSE   Send deletes ........................ FALSE   Always send ID ...................... FALSE   Message Retry Limit ................. 8   Initial Message Retry Timeout (s) ... 4   Message Back-off .................... Incremental   Exchange Delete Delay (s) ........... 30   Do Xauth ............................ FALSE     Xauth Finished .................... TRUE   Expiry Limit (bytes) ................ 0   Soft Expiry Limit (bytes) ........... 0   Bytes seen .......................... 0   Expiry Limit (seconds) .............. 0   Soft Expiry Limit (seconds) ......... 0   Seconds since creation .............. 0   Number of Phase 2 exchanges allowed . 4294967294   Number of acquires queued ........... 1 Sa Definition Information:   Authentication Type ................. INVALID   Encryption Algorithm ................ INVALID   Hash Algorithm ...................... INVALID   group Type .......................... INVALID   group Description ................... MODP512   DH Private Exponent Bits ............ 160   expiry seconds ...................... 0   expiry kilobytes .................... 0 XAuth Information:   Id .................................. 0   Next Message ........................ UNKNOWN   Status .............................. FAIL   Type ................................ Generic   Max Failed Attempts.................. 0   Failed Attempts...................... 0 NAT-Traversal Information:   NAT-T enabled ....................... NO   Peer NAT-T capable .................. NO   NAT discovered ...................... UNKNOWN Heartbeat Information:   Send Heartbeats ..................... NO   Next sequence number tx ............. 1   Receive Heartbeats .................. NO   Last sequence number rx ............. 0