Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

VPN tunnels to the PIX 500 Series Firewall with software version 7.x /ASA are not established

Core issue

This issue occurs due to the presence of Cisco bug ID CSCsd08170.

This problem occurs when there is already an existing xlate for the interface IP address on port 500.

In order to display the port translations on port 500, issue the show xlate global  | inc 500 command.


In order to resolve this issue, perform one of these steps:

  • Replace the global command with an IP address that is not the interface with the Internet Security Association and Key Management Protocol (ISAKMP) enabled.

  • Download and upgrade the software version to any of  these versions:

    • 7.3(0.11)

    • 7.2(0.75)

    • 7.3(0.10)

    • 7.1(2.5)
Version history
Revision #:
1 of 1
Last update:
‎06-22-2009 05:38 PM
Updated by:
Labels (1)