Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
231
Views
0
Helpful
1
Replies

problems telnetting throught VPN tunnel after upgrade to pix 7.2(1)

bruce_wright
Level 1
Level 1

‎07-26-2006 01:08 AM - edited ‎02-21-2020 02:33 PM

We recently upgraded a PIX from version 7.1(2) to 7.2(1) due to problems with the inspection engine. Since the upgrade we have not been able to telnet to machines behind the firewall through a site to site VPN tunnel.

before the upgrade everything worked fine, after the upgrade, nothing. We get the same problem with VPN Tunnels from version 6.3(4) and version 7.0(4) firewalls.

I found a document about this problem (Document ID: 6370 - PIX Performance Issues Caused by IDENT Protocol) which suggests turning on the "service resetinbound" command (tried, but no change) and we have tried turning off the IDENT requirements on our 6509's (couldn't find the command), but this is not really a viable options due to the large number of devices from various manufacturers that we have. The third option sounds like too much of a security risk to me.

We have several PIX that I want to upgrade from 7.0(4), but until we fix this problem I can?t proceed. Has anyone else experienced this problem, if so how did they fix it?

Cheers

Bruce

Labels:
0 Helpful
1 Reply 1
Customers Also Viewed These Support Documents