VPN 501 to VPN 515

Unanswered Question
Jan 16th, 2008

I am having an issue with one of my remote sites. We are creating a VPN tunnel from a PIX 501 (remote site) to PIX 515 (corporate office). Initally, the vpn tunnel is created and the users can access resource on our corporate network (i.e. email, files, printers, etc.) but after closing outlook or letting the system sit awhile, I lose the vpn tunnel and the only other way to re-establish the connection is to power cycle the PIX 501.

Any advice would be greatly appreciated

Thanks

DK

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
htarra Tue, 01/22/2008 - 12:32

I understand that you would like to setup PIX-to-PIX connection. For your reference please do have a quick look in this link:

Configuring a Simple PIX-to-PIX VPN Tunnel Using IPSec

http://www.cisco.com/warp/public/110/38.html

I looked through Cisco IOS documents, and the only way I found for IOS was

through using another tunnel (e.g. GRE:

http://www.cisco.com/univercd/cc/td/doc/solution/v3pnipmc.pdf), which is

not supported on ASA/PIX.

ajagadee Tue, 01/22/2008 - 13:08

How does the Pix 501 connect to the Pix 515. Is the Pix 515 configured as EzVPN Server or is the Pix 515 configured to accept Dynamic IPSec Connections.

If the Pix 515 is configured for EzVPN Server, I would definitely look at Network Extension Mode(NEM) on the pix 515 to keep the tunnel up all the time. Please refer the below URL for details:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008019e6d7.shtml

Regards,

Arul

** Please rate if it helps **

Actions

This Discussion