Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

L2TP/IPSec with PIX 7.0 and transport mode supported ?

Hello

I've got Windows XP/SP2 client connecting to a PIX 6.3.5. The Windows client needs to use IPSec transport mode.

Have a look at this document for a complete config:

http://www.cisco.com/en/US/partner/tech/tk583/tk372/technologies_configuration_example09186a00800942ad.shtml

note : the only thing is that i'm using pre-shared key instead of a certificate, but it's working fine !

Now I want to upgrade to PIX 7.0.4 and reported the configuration to the new commands (group-policy and tunnel-group), but 2 things seems missing:

1) the command "crypto ipsec transform-set <transform-set-name> mode transport" can't be changed to the command "ipsec transform-set <transform-set-name> mode transport

by doing a ? the transport option doesn't appear (by using ASDM 5.0, it's still not possible to select transport but only tunnel)

2) the command "vpdn group <group-name> accept dialin l2tp" can't be changed to the command "vpn-tunnel-protocol L2TP/IPSec"

I'm using following document:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_70/pix_upgd/pixupgrd.htm#wp1473295

Anyone has in idea ? Are there other commands available or is simply L2TP over IPSec not supported in release 7.0.4 even if the document is telling it's possible ?

Thanks

1 REPLY
Bronze

Re: L2TP/IPSec with PIX 7.0 and transport mode supported ?

This guide describes how to upgrade from Cisco PIX Version 6.3 or 6.2 to Cisco PIX Security appliance Version 7.0. The upgrade to PIX Security appliance Version 7.0 is generally seamless, and requires little manual intervention on your part. This guide describes the changed and deprecated features and commands in detail. Examples of these changes are also included. New features added in PIX Security appliance Version 7.0 are briefly introduced in this guide.

The target audience for this guide is a security appliance administrator with an understanding of CLI commands and features, and experience configuring PIX.

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_upgrade_guides09186a0080369ee2.html

115
Views
0
Helpful
1
Replies
CreatePlease login to create content