Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ISAKMP tunnel debug error message on PIX

I have configured a Linksys VPN router and a PIX as a site to site.

When I run the debug cry commands on the PIX, I am always receiving the following message:

"ISAKMP (0): retransmitting Config Mode Request..."

I have searched the Cisco site and the Web and cannot find anything definitive as to what is causing my error.

When I perform a "sh isa sa" on the PIX, I get the following:

state = OAK_CONF_ADDR, but I cannot reference that either.

What are these debug outputs telling me?

Thx

1 ACCEPTED SOLUTION

Accepted Solutions
Gold

Re: ISAKMP tunnel debug error message on PIX

when configuring IPSec with non-Cisco devices, always turn off xauth (add command no-xauth)

change command specifying isakmp key

isakmp key your_key address your_address no-xauth

M.

Hope that helps rateif it does

2 REPLIES
Gold

Re: ISAKMP tunnel debug error message on PIX

when configuring IPSec with non-Cisco devices, always turn off xauth (add command no-xauth)

change command specifying isakmp key

isakmp key your_key address your_address no-xauth

M.

Hope that helps rateif it does

New Member

Re: ISAKMP tunnel debug error message on PIX

Yes. I ended up digging up an old config and saw two statements: no-xauth and no-config-mode. Once I put both of those on the statement ( as your example illustrates) I was able to connect the sites together.

Thanks for your help.

129
Views
5
Helpful
2
Replies