06-13-2008 11:24 AM - edited 02-21-2020 02:03 AM
Hi !!
I have problems establishing a vpn between two pix.
The first pix 525 has version 7.2 (2) another Pix has version 6.3 this one is not administered by my person.
The phase establishes 1 but send the messages attached
can help me
Thank you
Solved! Go to Solution.
06-16-2008 10:44 AM
I'm glad you have it working now :)
Please rate helpful posts.
Regards
Farrukh
06-14-2008 02:33 AM
Are you sure your crypto ACLs are mirror images of each other? Can you post the crypto configs of both devices.
Regards
Farrukh
06-16-2008 07:50 AM
06-16-2008 08:47 AM
You access-list on the 7.x firewall should be a mirror image (opposite) of the one on the 6.x firewall, currently it is not:
access-list 102 extended permit ip host 192.168.1.3 host 10.32.0.41
it should be:
access-list 102 extended permit ip host 10.32.0.41 host 192.168.1.3
Secondly you are missing this line:
crypto map TLF 102 match address 102
Also try to remove extra lines in ACL 102, try to keep same number of lines (configured as mirror) of opposite vpn gateway.
Regards
Farrukh
06-16-2008 09:20 AM
thank you !!
Thank you !!
its works !!
every think its working !!!
06-16-2008 10:44 AM
I'm glad you have it working now :)
Please rate helpful posts.
Regards
Farrukh
06-16-2008 11:01 AM
thank you !!! i was so sad because i had one week with this problem, thank you
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide