Redundant VPN support b/w Pix and Routers

Unanswered Question
May 26th, 2009
User Badges:

I've tried to get a redundant VPN setup going between my PIX at one end and two routers at the remote office end. But it just doesn't work? ISAKMP negotiations happen, but phase two doesnt start. I turned on the debug's but couldnt make sense of it. I'll post the debug later tonight. And no, i was'nt using NAT anywhere in between.

I replaced the pix with a 1800 ISR and it works well!.. Does anyone know of any compatibility issues between a PIX and a Router regarding VPN??

Another question i have is :

In the PIX when i enter the

#crypto isakmp key cisco address <IP>, it gets converted into a tunnel-group command and gets stored in the config? Does anyone know why this happens? is the crypto isakmp key command deprecated?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion