Advertisement

08.02.2007 at 06:36AM PDT, ID: 22737377
[x]
Attachment Details

VPN problems between Cisco ASA 5505 and PIX 515e

Asked by KTN-IT in IPSec Security Protocol, Virtual Private Networking (VPN), Networking Hardware Firewalls

Tags: , , , ,

At out company, we had a Cisco PIX 506e firewall that we were using to create a VPN with our company in Japan.  Over there, they have a Cisco PIX 515e.  But our 506e went out on us, so I bought a Cisco ASA 5505 to replace it.  I tried to enter the config from the old PIX 506e into the new ASA 5505 as best I could, but I am still having some glitchy problems with our VPN connection.

Could someone look at my configs and tell me why they might not be talking to each other correctly?  I'll post them below.

I've already done almost every bit of troubleshooting I can imagine, and here's what I think may possibly be causing the problem:
1. The ASA 7.2 is not compatible with the PIX 6.2
2. The ASA does not like the PIX's "conduit" command
3. Some kind of access-list problem.  ASA does not allow protocols like "access-list 101 permit icmp any any," but the PIX does.Start Free Trial
[+][-]08.02.2007 at 06:40AM PDT, ID: 19616765

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.02.2007 at 06:43AM PDT, ID: 19616792

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.02.2007 at 07:33AM PDT, ID: 19617289

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.02.2007 at 07:52AM PDT, ID: 19617468

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.02.2007 at 07:59AM PDT, ID: 19617552

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.11.2008 at 11:53AM PDT, ID: 22207133

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: IPSec Security Protocol, Virtual Private Networking (VPN), Networking Hardware Firewalls
Tags: asa, cisco, vpn, 5505, pix
Sign Up Now!
Solution Provided By: KTN-IT
Participating Experts: 1
Solution Grade: A
 
 
 
Loading Advertisement...
20080716-EE-VQP-32