Hi ,
I have Astaro 220 box version 8.305 .
I tried to establish an IPsec S2S vpn with certificate with a cisco ASA 5510.
but it can not be established although I configured all phase 1 and phase 2 policy same in Astaro and ASA and also the lifetime.
-Certificates is issues by external CA.
-IPsec PFS group is enabled in both side.
-No strict policy nor compression configured in both side.
-There is no natting.
-No DPD Nor CRL configured.
-Please note that the same configuration is working but with preshared key.
Kindly find the attached log of the ASTARO and ASA .
Thanks,
Mostafa Aly
I have Astaro 220 box version 8.305 .
I tried to establish an IPsec S2S vpn with certificate with a cisco ASA 5510.
but it can not be established although I configured all phase 1 and phase 2 policy same in Astaro and ASA and also the lifetime.
-Certificates is issues by external CA.
-IPsec PFS group is enabled in both side.
-No strict policy nor compression configured in both side.
-There is no natting.
-No DPD Nor CRL configured.
-Please note that the same configuration is working but with preshared key.
Kindly find the attached log of the ASTARO and ASA .
Thanks,
Mostafa Aly