Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
357
Views
0
Helpful
2
Replies

Failover problems

jay.ratliff
Level 1
Level 1

‎08-30-2007 04:42 AM - edited ‎03-11-2019 04:04 AM

I have 2 PIX515e's with a crossover cable on e5. I get the following error when I start the secondary unit. pix(config-if)# Mate's license (VPN-3DES-AES Enabled) is not compatible with my

license (VPN-3DES-AES Disabled). Failover will be disabled. Any ideas? Thanks........

Primary unit sho ver:

Cisco PIX Security Appliance Software Version 7.2(1)2

Device Manager Version 5.2(1)

Compiled on Wed 14-Jun-06 15:54 by builders

System image file is "flash:/image.bin"

Config file at boot was "startup-config"

pix up 18 hours 4 mins

Hardware: PIX-515E, 128 MB RAM, CPU Pentium II 433 MHz

Flash E28F128J3 @ 0xfff00000, 16MB

BIOS Flash AM29F400B @ 0xfffd8000, 32KB

Encryption hardware device : VAC+ (Crypto5823 revision 0x1)

0: Ext: Ethernet0 : address is 0012.7fa6.96ae, irq 10

1: Ext: Ethernet1 : address is 0012.7fa6.96af, irq 11

2: Ext: Ethernet2 : address is 000d.88ef.7908, irq 11

3: Ext: Ethernet3 : address is 000d.88ef.7909, irq 10

4: Ext: Ethernet4 : address is 000d.88ef.790a, irq 9

5: Ext: Ethernet5 : address is 000d.88ef.790b, irq 5

Licensed features for this platform:

Maximum Physical Interfaces : 6

Maximum VLANs : 25

Inside Hosts : Unlimited

Failover : Active/Active

VPN-DES : Enabled

VPN-3DES-AES : Enabled

Cut-through Proxy : Enabled

Guards : Enabled

URL Filtering : Enabled

Security Contexts : 2

GTP/GPRS : Disabled

VPN Peers : Unlimited

This platform has an Unrestricted (UR) license.

Secondary unit sho ver:

Device Manager Version 5.2(1)

Compiled on Wed 14-Jun-06 15:54 by builders

System image file is "flash:/image.bin"

Config file at boot was "startup-config"

pix up 32 mins 54 secs

Hardware: PIX-515E, 128 MB RAM, CPU Pentium II 433 MHz

Flash E28F128J3 @ 0xfff00000, 16MB

BIOS Flash AM29F400B @ 0xfffd8000, 32KB

Encryption hardware device : VAC+ (Crypto5823 revision 0x1)

0: Ext: Ethernet0 : address is 0012.7fa6.969b, irq 10

1: Ext: Ethernet1 : address is 0012.7fa6.969c, irq 11

2: Ext: Ethernet2 : address is 000d.88ef.76f0, irq 11

3: Ext: Ethernet3 : address is 000d.88ef.76f1, irq 10

4: Ext: Ethernet4 : address is 000d.88ef.76f2, irq 9

5: Ext: Ethernet5 : address is 000d.88ef.76f3, irq 5

Licensed features for this platform:

Maximum Physical Interfaces : 6

Maximum VLANs : 25

Inside Hosts : Unlimited

Failover : Active/Standby

VPN-DES : Enabled

VPN-3DES-AES : Disabled

Cut-through Proxy : Enabled

Guards : Enabled

URL Filtering : Enabled

Security Contexts : 2

GTP/GPRS : Disabled

VPN Peers : Unlimited

This platform has a Failover Only-Active/Standby (FO) license.

Labels:
0 Helpful
2 Replies 2

srue
Level 7
Level 7

‎08-30-2007 09:03 AM

The error says it all. you need to apply for the 3des/aes license for the secondary unit. the good news is its free.

https://tools.cisco.com/SWIFT/Licensing/jsp/formGenerator/Pix3DesMsgDisplay.jsp

0 Helpful

jay.ratliff
Level 1
Level 1
In response to srue

‎08-31-2007 10:09 AM

Srue,

I applied it to the primary but not the secondary. Oops. It works now. Thanks...

Jay

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card