Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX515 VPN tunnel problem

I have PIX515 and terminated 2 ISP's in interface Eth0 & Eth2

I have created 2 IPSec tunnels already b/w local & remote office thro' Eth0 and are up.

I wanted to create a tunnel b/w local & remote office on second interface Eth2 but the tunnel is not coming up.

ISAKMP is enabled on both interfaces.

interface Ethernet0

nameif ISP1

security-level 0

ip address xxxxx 255.255.255.128

interface Ethernet2

nameif ISP2

security-level 4

ip address xxxxx 255.255.255.128

Both local & remote office has got PIX515.

Cisco PIX Security Appliance Software Version 7.0(2)

4 REPLIES
New Member

Re: PIX515 VPN tunnel problem

Mate,

Not quite sure that the information that you have provided is enough to help us help you :-); I would say that you need to check the following:

- ISP is not blocking any ISAKMP and/or ESP traffic

- Your Internet gateway is not filtering any of the IPSec freamework protocols/ports

I would recommend that you remove any ACL on any router on the way till you get connectivity and then re-apply everything again.

Hope this might click a thought somehow ...

Cheers.

New Member

Re: PIX515 VPN tunnel problem

Make sure your ISAKMP keys and IPSEC policy match on both PIXes.

Once that is done, make sure you verify:

show ipsec sa

show isakmp sa

All you should need to do to bring up the tunnel is generate "interesting traffic"

You will need to generate new RSA key

ca generate rsa key 512

ca save all

Good luck.

New Member

Re: PIX515 VPN tunnel problem

Hello,

I have cisco PIX 515E with failover.

I need to configure IPSEC with another router.please let me know the steps & procudure & steps for configuration.Please find the config.Please find the attach file

Regards,

Moorthy.

New Member

Re: PIX515 VPN tunnel problem

try looking here for a walkthough

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800ab518.shtml

it goes though the basic steps, also if you search cco there are several good guides on setting up basic vpns

104
Views
0
Helpful
4
Replies