Anyone have a clue why I wouldn't be getting debug messages. I have
debug crypto ipsec - on
debug crypto isakmp - on
debug crypto engine - on
"Cryptographic Subsystem:
Crypto ISAKMP debugging is on
Crypto Engine debugging is on
Crypto IPSEC debugging is on"
I did receive a message when I logged in SSH. I connected from my other network via External not internal. (received message from my console port):
crypto_engine: Create signature
So obviously some debugging is working.. I can do debug all and see tons o fun.. It's almost as if my VPN isn't even "trying" to connect.
Anyone have any ideas? Been stuck on this for a while.
crypto isakmp policy 4
encr 3des
authentication pre-share
group 2
crypto isakmp key cisco address x.x.x.x
crypto ipsec transform-set STRONG esp-3des
crypto map combined 50 ipsec-isakmp
set peer x.x.x.x
set transform-set STRONG
match address 150
interface FastEthernet4
description WEB
ip address xxx.xxx.xxx.xxx 255.255.255.248
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
crypto map combined
access-list 150 permit ip 192.168.13.0 0.0.0.255 192.168.3.0 0.0.0.255
I've checked my destinations IPS 10x over.. and my remote CISCO's config's look identical (different destination ips of course)
debug crypto ipsec - on
debug crypto isakmp - on
debug crypto engine - on
"Cryptographic Subsystem:
Crypto ISAKMP debugging is on
Crypto Engine debugging is on
Crypto IPSEC debugging is on"
I did receive a message when I logged in SSH. I connected from my other network via External not internal. (received message from my console port):
crypto_engine: Create signature
So obviously some debugging is working.. I can do debug all and see tons o fun.. It's almost as if my VPN isn't even "trying" to connect.
Anyone have any ideas? Been stuck on this for a while.
crypto isakmp policy 4
encr 3des
authentication pre-share
group 2
crypto isakmp key cisco address x.x.x.x
crypto ipsec transform-set STRONG esp-3des
crypto map combined 50 ipsec-isakmp
set peer x.x.x.x
set transform-set STRONG
match address 150
interface FastEthernet4
description WEB
ip address xxx.xxx.xxx.xxx 255.255.255.248
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
crypto map combined
access-list 150 permit ip 192.168.13.0 0.0.0.255 192.168.3.0 0.0.0.255
I've checked my destinations IPS 10x over.. and my remote CISCO's config's look identical (different destination ips of course)
Last edited: