Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX to ASA L2L VPN Problems due to Software Releases?

Hi All,

we have this very funny and unexplained situation. One of our PIX 515e Firewalls was recently upgrated to a newer version 7.0.5. Since then one of the VPN tunnels to one of our Customers who is using ASA 5520 with Version 7.0.4 stopped working and Phase 2 of VPN failed!!! After spending 2 days with the customer trying to fix the problem (rebooting systems, reconfiguring tunnels etc), we recommended that they should try and upgrade their Software release to V7.0.5 as well. Problem was resolved!!!!

Could it be a coincidence or some known software bug?

Please note that Tunnels from our PIX 515e to other (Cisco Routers, PIX 6.X, Checkpoint etc) were working fine.

2 REPLIES
Silver

Re: PIX to ASA L2L VPN Problems due to Software Releases?

Check if the two peers are identical in the phase two parameters

New Member

Re: PIX to ASA L2L VPN Problems due to Software Releases?

Excactly the same Settings (even manually configures what cisco refers as Default parameters with pfs, timeouts etc.)

Still though, if it was a major release upgrade then changing some default values could be possible, but upgrading from a sub-minor version? (7.0.4 - 7.0.5)?

131
Views
0
Helpful
2
Replies
CreatePlease to create content