VPN migration from ISA server to PIX with certificate

Unanswered Question
Apr 22nd, 2008
User Badges:

Hi all,

I should migrate my remote client vpn from ISA server to the PIX.

Can somebody help me?

The environment should be migrated using same vpn type (i.e. protocol, clients certificates, etc)

Actual environment:

Ipsec over l2tp vpn;

Clients validated by certificate;

Remote clients windows XP using windows native remote access client;

Each client has its own certificate issued from local windows CA authority that can be univocally revocated;

Thanks in advance.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jbayuka Mon, 04/28/2008 - 10:44
User Badges:
  • Bronze, 100 points or more

You need to follow the below guidelines for the migration to PIX from your existing ISA server

1. Backup your current configuration in some computers or any other source through TFTP server software.

2. Install the latest software like 7.2 or 8.0 in the PIX

3. Copy the configuration using the command copy tftp startup:

4. PIX software will automatically convert it to its own format if some commands are not supported in latest version or else it will throw the error message so that you need to refer the command reference to configure the suitable commands.

ebottani Wed, 04/30/2008 - 02:23
User Badges:

I think there is a misunderstanding:

actually the VPNs are terminated in the Microsoft ISA server proxy/firewall. I suppose you thought to an orthographic mistake: ISA insted of ASA.

Thanks anyway.... Efrem


This Discussion