Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
248
Views
0
Helpful
2
Replies

OH DEAR! "clear isakmp" and "clear ipsec" trauma... need some advice.

digl
Level 1
Level 1

‎12-05-2002 06:38 AM - edited ‎03-09-2019 01:17 AM

Hi,

The aforementioned 2 commands have been entered on my PIX 520 and all the vpn config disappeared. I have added the config lines back in from a text back up but none of my tunnels work now. I have even set one of them up from scratch now with a new pre-shared key, to no avail. Just a quicky, on the subject (ish) - I shouldn't have to allow access to a device via a "conduit" statement when using IPSEC should I? I assume the access list I use should see the destination or source as interesting and pop up the tunnel?

Thanks in Advance,

Ade

Labels:
0 Helpful
2 Replies 2

kdurrett
Level 3
Level 3

‎12-05-2002 06:50 AM

I'm sure you meant to clear the configurations :). Post your new config, will take a look at it. No, you wont need conduits when the traffic is coming through the vpn tunnel unless you dont have "sysopt connection permit-ipsec" in your config. The access list you use for interesting traffic will bring up the tunnels.

Kurtis Durrett

0 Helpful

digl
Level 1
Level 1
In response to kdurrett

‎12-05-2002 07:57 AM

heh..

I actually meant to add "sa" to the end of the command, but had a bit of a brain fade... It's all working now - thanks very much for your response though mate.

Ade

0 Helpful
Customers Also Viewed These Support Documents