Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
400
Views
0
Helpful
1
Replies

L2TP/IPSec with PIX 7.0 and transport mode supported ?

jbrunstein
Level 1
Level 1

‎02-03-2006 07:22 AM - edited ‎02-21-2020 02:14 PM

Hello

I've got Windows XP/SP2 client connecting to a PIX 6.3.5. The Windows client needs to use IPSec transport mode.

Have a look at this document for a complete config:

http://www.cisco.com/en/US/partner/tech/tk583/tk372/technologies_configuration_example09186a00800942ad.shtml

note : the only thing is that i'm using pre-shared key instead of a certificate, but it's working fine !

Now I want to upgrade to PIX 7.0.4 and reported the configuration to the new commands (group-policy and tunnel-group), but 2 things seems missing:

1) the command "crypto ipsec transform-set <transform-set-name> mode transport" can't be changed to the command "ipsec transform-set <transform-set-name> mode transport

by doing a ? the transport option doesn't appear (by using ASDM 5.0, it's still not possible to select transport but only tunnel)

2) the command "vpdn group <group-name> accept dialin l2tp" can't be changed to the command "vpn-tunnel-protocol L2TP/IPSec"

I'm using following document:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_70/pix_upgd/pixupgrd.htm#wp1473295

Anyone has in idea ? Are there other commands available or is simply L2TP over IPSec not supported in release 7.0.4 even if the document is telling it's possible ?

Thanks

Labels:
0 Helpful
1 Reply 1

pradeepde
Level 5
Level 5

‎02-08-2006 12:05 PM

This guide describes how to upgrade from Cisco PIX Version 6.3 or 6.2 to Cisco PIX Security appliance Version 7.0. The upgrade to PIX Security appliance Version 7.0 is generally seamless, and requires little manual intervention on your part. This guide describes the changed and deprecated features and commands in detail. Examples of these changes are also included. New features added in PIX Security appliance Version 7.0 are briefly introduced in this guide.

The target audience for this guide is a security appliance administrator with an understanding of CLI commands and features, and experience configuring PIX.

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_upgrade_guides09186a0080369ee2.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents