Link to home
Start Free TrialLog in
Avatar of glennmgray
glennmgray

asked on

Problems re-configuring Cisco PIX 501

We recently switched isp's so our ip addresses have changed.  I tried changing the config for our PIX 501 vpn but when I try to access the vpn from a client I get:

"Sev=Warning/3   IKE/0xA300004B  Received a NOTIFY message with an invalid protocol id(0)"

I've listed the old & current configs below.   In the old config .89 is the gateway and .92 is the vpn outside address.  In the current config .33 is the gateway and .36 is the vpn outside address.

I can't see any differences.  Does anybody know why the old config worked but the current one doesn't?

Old-PIX-501-working-config.txt
PIX-501-Current-Config-Scrubbed.txt
ASKER CERTIFIED SOLUTION
Avatar of Britt Thompson
Britt Thompson
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Does the VPN client config reflect the new IP address of the Pix?
And I see your Xlate Timeout is set to 5 hours. You might need to do a "clear xlate" after changing the outside IP and gateway.
Avatar of glennmgray
glennmgray

ASKER

I gave up trying to modify the config and reset to factory defaults and used your how-to.  It's now working fine.  Thanks.