Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
740
Views
0
Helpful
3
Replies

VPN connection between Pix 501 and ASA 5505

richard.bumanlag
Level 1
Level 1

‎02-15-2012 01:14 AM

Hi,

We have successfully connected the pix501 and asa 5505 firewallls using ipsec vpn.

the firewalls and servers and beeing shutdown after office hours.

the problem is everytime we turn on the firewalls, we need to do "ping" on vpn inorder to establish vpn connection with the two firewalls.

After doing a ping command. The VPN connection between firewalls is established.

we us vpdn to create a tunnel to the asa firewall.

Can you help us with this one?

Thanks

Labels:
0 Helpful
3 Replies 3

mvsheik123
Level 7
Level 7

‎02-15-2012 05:21 PM

AFAIK, you need some interesting traffic to initiate the tunnel. In your case you are using ping. Tunnel should also reestablish if you try to access any resource on the other end.

Thx

MS

0 Helpful

richard.bumanlag
Level 1
Level 1
In response to mvsheik123

‎02-16-2012 05:24 AM

is there any way that I can auto reconnect the Tunnel upon turn on?

0 Helpful

Patrick0711
Level 3
Level 3
In response to richard.bumanlag

‎02-16-2012 10:22 AM

My question is, why do you want the tunnel to remain active all the time? 

The only way I know of to achieve this is with the 'originate only' and 'answer only' commands in the crypto map which is not possible with the PIX.  Even in this case, the individual phase 2 SAs will still need to be established by interesting traffic.

0 Helpful
Customers Also Viewed These Support Documents