08-03-2007 06:23 AM - edited 03-09-2019 06:32 PM
Hi. We are currently configuring an ASA5510 running v8.0(2). We have setup NAT traversal for ipsec using:
crypto isakmp nat-traversal 20
This works fine. The problem is, whenever I write the config (write mem) it doesn't retain this setting in the startup-config. A "show running-config" immediately after a reload contains the line:
no crypto isakmp nat-traversal
If I edit the config in a txt editor, and add "crypto isakmp nat-traversal 20", then copy it to startup-config, it works. This isn't sufficient though, as it only lasts until the next time the config is updated by a "write mem" command, whereby it is disabled again.
Is this a bug in 8.0(2)? Is there any way to add a persistent entry in the ASA config that is *always* retained when a "write mem" command is issued? Any help/advice appreciated.
Thanks.
Solved! Go to Solution.
08-03-2007 08:00 AM
Yes a bug has been filed for this:
CSCsj52581
Check details about the bug here:
http://www.cisco.com/cgi-bin/Support/Bugtool/home.pl
~Rohit
08-03-2007 08:00 AM
Yes a bug has been filed for this:
CSCsj52581
Check details about the bug here:
http://www.cisco.com/cgi-bin/Support/Bugtool/home.pl
~Rohit
08-03-2007 08:02 AM
Great, that's all I needed to know. Thanks for the info.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: