Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Upgrading PIX from 6.3(5) to 7.0(4)

I'm upgrading a PIX from 6.3(5) to 7.0 with Ezvpn. The config moves over fine, however, none of my remote VPN clients can connect. I'm receiving the error:

"Removing peer from peer table failed, no match!

Error: Unable to remove PeerTblEntry"

I had this issue going straight from 6.3 to 7.2 and TAC recommended doing an incremental upgrade 6.3 - 7.0 - 7.1. I tried the incremental and obviously i'm still experiencing this error. Just curious if anyone here has experienced this.

The main pix is a 515E Unrestricted and the clients are all PIX 501's.

Thanks!

3 REPLIES
Gold

Re: Upgrading PIX from 6.3(5) to 7.0(4)

Could you try following command on 515

isakmp identity address

M.

Hope that helps rate if it does

New Member

Re: Upgrading PIX from 6.3(5) to 7.0(4)

Actually, I called TAC back and the fix was to type "nem enable" for each remote site under the group-poliy attributes. Thx for your response though.

New Member

Re: Upgrading PIX from 6.3(5) to 7.0(4)

Hi,

I have the same problem.

Could you please give a configuartion example with the command "nem enable" that you specify.

Thank you in advance

128
Views
0
Helpful
3
Replies