aaaz

VPN Phase-2 down?

author
Arjun varma
,
ZAP

Hi Everyone,

 

Consider a scenario that site to site vpn tunnel is build between two ASA's, Phase -1 is up and it shows MM_Active but the issue is with Phase -2

apart from checking transform set parameters on both ASA's, please let me know what are all other troubleshooting steps to follow to make Phase -2  UP.

Thanks in Advance.

 

- Arjun

  • Total 1 Answer
  • 3612
Can You answer this question?
author
Mr. Piyush Kataria

On ASA VPN is pain sometimes -;

1)For Phase 2

Please check intresting traffic ACL on both ends.

2)IF CA is used for authentiation

Please check peer id related issues.

Trustpoint should be defined.

If error is peer id certificate validation failed in that case you have to run

no ignore ipsec-keyusage under crypto ca truspoint configuration.

 

Please share the error you are getting .

Recommended

Whoops, looks like something went wrong.

1/1 ErrorException in Filesystem.php line 111: file_put_contents(/var/www/html/storage/framework/sessions/PGSkJ2JgpStqAy8WDAY4BHAjKtdiwpSWKSWRksdb): failed to open stream: No space left on device

  1. in Filesystem.php line 111
  2. at HandleExceptions->handleError(2, 'file_put_contents(/var/www/html/storage/framework/sessions/PGSkJ2JgpStqAy8WDAY4BHAjKtdiwpSWKSWRksdb): failed to open stream: No space left on device', '/var/www/html/vendor/laravel/framework/src/Illuminate/Filesystem/Filesystem.php', 111, array('path' => '/var/www/html/storage/framework/sessions/PGSkJ2JgpStqAy8WDAY4BHAjKtdiwpSWKSWRksdb', 'contents' => 'a:4:{s:6:"_token";s:40:"b3FLXoE0suXuygM69iZ1OROHAqoD3bIKWpsdm7r2";s:11:"viewed_urls";a:1:{i:0;s:16:"vpn-phase-2-down";}s:9:"_previous";a:1:{s:3:"url";s:44:"http://www.networkbulls.com/vpn-phase-2-down";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}', 'lock' => true))
  3. at file_put_contents('/var/www/html/storage/framework/sessions/PGSkJ2JgpStqAy8WDAY4BHAjKtdiwpSWKSWRksdb', 'a:4:{s:6:"_token";s:40:"b3FLXoE0suXuygM69iZ1OROHAqoD3bIKWpsdm7r2";s:11:"viewed_urls";a:1:{i:0;s:16:"vpn-phase-2-down";}s:9:"_previous";a:1:{s:3:"url";s:44:"http://www.networkbulls.com/vpn-phase-2-down";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}', 2) in Filesystem.php line 111
  4. at Filesystem->put('/var/www/html/storage/framework/sessions/PGSkJ2JgpStqAy8WDAY4BHAjKtdiwpSWKSWRksdb', 'a:4:{s:6:"_token";s:40:"b3FLXoE0suXuygM69iZ1OROHAqoD3bIKWpsdm7r2";s:11:"viewed_urls";a:1:{i:0;s:16:"vpn-phase-2-down";}s:9:"_previous";a:1:{s:3:"url";s:44:"http://www.networkbulls.com/vpn-phase-2-down";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}', true) in FileSessionHandler.php line 83
  5. at FileSessionHandler->write('PGSkJ2JgpStqAy8WDAY4BHAjKtdiwpSWKSWRksdb', 'a:4:{s:6:"_token";s:40:"b3FLXoE0suXuygM69iZ1OROHAqoD3bIKWpsdm7r2";s:11:"viewed_urls";a:1:{i:0;s:16:"vpn-phase-2-down";}s:9:"_previous";a:1:{s:3:"url";s:44:"http://www.networkbulls.com/vpn-phase-2-down";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}') in Store.php line 128
  6. at Store->save() in StartSession.php line 88
  7. at StartSession->terminate(object(Request), object(Response)) in Kernel.php line 216
  8. at Kernel->terminateMiddleware(object(Request), object(Response)) in Kernel.php line 187
  9. at Kernel->terminate(object(Request), object(Response)) in index.php line 59
  10. at require_once('/var/www/html/public/index.php') in index.php line 20