Re: cannot retrieve crl after re-installing SCEP plugin
It is definately an SCEP plugin issue. I'm using PIX 6.3(5) on our remote PIX firewalls.
After re-installing the SCEP plugin, I can issue a new certificate to a PIX firewall and it can build a VPN tunnel to a firewall that has a certificate that was issued before the SCEP re-install. However, the PIX with the certificate that was issued before the SCEP re-install can no longer retreive the CRL. A faut is seen with debug when trying to retreive the CRL as well.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...