|
||||||||
try on the pix config t clear crypto isakmp sa clear crypto ipsec sa exit BR VERY CAREFUL as a command of only clear crypto isakmp without the sa on the end will ERASE your isakmp policies and keys. -----Original Message----- From: Sean Waite [mailto:swaite at sbn dash services dot com] Sent: Mon 6/26/2006 4:24 PM To: m0n0wall at lists dot m0n0 dot ch Subject: [m0n0wall] IPSEC VPN w/Cisco PIX-Strange problem I have a strange problem with a m0n0wall to PIX VPN. At the office is the PIX, home is the m0n0wall. For example, today I swapped out a switch that had the PIX line to the inside network. When I got home I find as usual the VPN is non functioning. By this I mean SAD/SPD are created, no error messages, yet no traffic is going through. I have had this problem EVERY time there is a network interruption. To fix this I have to physically turn off the PIX, turn back on, and then reboot the m0n0wall, and then the VPN will work just fine...that is until the next break. Here is where it gets confusing. I SSH to the PIX, and then send the reboot command, for which the PIX then reboots. That does not work, nor has it ever. Every time I have to physically shut off the PIX and turn it back on. Otherwise there just is no connection to the other side, even though there are no error messages and both sides indicate a tunnel has been made. Can anyone make sense of what is going on here? Sean --------------------------------------------------------------------- To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. |