02-17-2004 08:59 AM - edited 02-21-2020 01:02 PM
Has anybody ever tried to turn off a crypto map and have your pix completely fail on you...meaning it no longer forwards packets anywhere to the internet even though your crypto map has nothing to do with your access-list on your outside interface. I had been testing various configs for the last 3 weeks without a problem..and now..I try to undo something so basic, and my pix no longer forwards packets..and sometimes switches to failover..but still does not forward packets to the internet. If I put the setting back in there..(even though no peer is assigned to the mapping)..everything is back up and running fine..its so strange..any ideas ?
Its a pix to pix config.
Thanks
02-17-2004 09:53 AM
The PIX is very picky about crypto stuff. You need to turn off the crypto map before you make any changes to it. Something like:
no crypto map mymap interface outside
Once you do that, you can change it all you want before you re-apply it.
02-17-2004 11:01 AM
thats what ill try next. Funny thing is though, i never had to before. Doing that after all, brings down the VPN for multiple locations as well. BUt i will give that a whirl tonight.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide