So.. In order to have multiple tunnels I normally just set up a crypto map mapname ... all the necessary statements.. and for each tunnel on the map, I add a 10, 20, 30 or whatever...
The problem is that whenever I add a new tunnel, in the process of doing so, the firewall locks out (i'm going in through ssh).. the only way I can remedy this problem is by shutting down all the tunnels, adding the full tunnel, and then going ahead with it.
Why is this happening? it seems retarded that I would have to shut everything down this way...
My question is.. could it be because I need to put my crypto map mapname 20 match address access-list ... first?
the last time this happened was when I was adding an the first statement for the additional tunnel.. crypto map mapname 20 ipsec-isakmp... is it just negotiating everything as a tunnel and that's what is f'ing it up?
Can I just change the order of my commands? do I have to create a brand new crypto map every time.. or what do I do to eliminate downtime?