Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Old school command line vs. ASDM GUI

I have a VPN tunnel that functions correctly, however, the technical person on the remote end is more comfortable using ASDM. Local device is a PIX 535 w/ver 7.2(2). The remote side is an ASA 5520 w/ver 7.2(1). When the remote side is setup via GUI things do not work. After resetting remote side up using object groups and command line we can get source/destination/service port connectivity. The remote Team wants to do "VPN filters" Is this different from an ACL with source/destination/service? If so can u provide urls for review?

1 REPLY

Re: Old school command line vs. ASDM GUI

Hi Rene

Following also applies to L2L VPN tunnels. But instead modifying defaultl2l group-policy, ask them to create a new group policy and set the tunnel use this policy

tunnel-group xxx general-attrib

default-group-policy createdgrouppolicy

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080641a52.shtml

Regards

112
Views
0
Helpful
1
Replies