Hello,
I am trying to connect a ipsec VPN from my ASA to my TPLINK TL-R600VPN
This is what I am getting from the TPLINK log.
12 Jan 21 00:51:39 VPN INFO ISAKMP-SA expired spi:2db25dc4bddaaf47:bcd0ed9f3adbdca1
11 Jan 21 00:51:37 VPN ERROR unknown notify message, no phase2 handle found.
10 Jan 21 00:51:37 VPN INFO initiate new phase 2 negotiation:
9 Jan 21 00:51:36 VPN INFO ISAKMP-SA established spi:2db25dc4bddaaf47:bcd0ed9f3adbdca1
8 Jan 21 00:51:36 VPN INFO NAT not detected
7 Jan 21 00:51:36 VPN INFO Selected NAT-T version: draft-ietf-ipsec-nat-t-ike-02
6 Jan 21 00:51:36 VPN INFO isakmp_newcookie 2505 Get 16 bytes from urandom.
5 Jan 21 00:51:36 VPN INFO isakmp_newcookie 2499 Get no bytes from random,try /dev/urandom.
4 Jan 21 00:51:36 VPN INFO initiate new phase 1 negotiation:
3 Jan 21 00:51:35 VPN INFO IPsec-SA expired: ESP/Tunnel spi=245546721(0xea2bee1)
2 Jan 21 00:51:26 VPN INFO ISAKMP-SA deleted spi:07f09f8b17d4d73a:9c995dfc20f8a127
1 Jan 21 00:51:25 VPN ERROR x.x.x.x give up to get IPsec-SA due to time up to wait.
ASA - Conf
crypto dynamic-map DYNAMIC 22 set transform-set AES-256-SHA
crypto map CRYPTOMAP 22 match address VPN_TO_VOIP
crypto map CRYPTOMAP 22 set peer x.x.x.x
crypto map CRYPTOMAP 22 set transform-set AES-256-SHA
crypto isakmp policy 22
access-list VPN_TO_VOIP extended permit ip 192.168.1.0 255.255.255.0 10.1.0.0 255.255.255.0
access-list VPN_TO_VOIP extended permit ip 10.0.0.0 255.255.255.0 10.1.0.0 255.255.255.0
tunnel-group x.x.x.x type ipsec-l2l
tunnel-group x.x.x.x ipsec-attributes
pre-shared-key *****
crypto isakmp policy 22
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 28800