• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 566
  • Last Modified:

Disable "IP LOCAL POOL" in Cisco ASA 5520 VPN

I have two ASA 5520 that currently has several pools / groups setup on it.

Refer to the code below. I would like to deactivate NAME1, NAME2, NAME3, and NAME4.

However i would like to leave NAME5 active.

Also, I want to leave the deactivated code in my config.

Ideas?
ip local pool NAME1 192.168.1.2-192.168.1.254 mask 255.255.255.0
ip local pool NAME2 192.168.2.2-192.168.2.254 mask 255.255.255.0
ip local pool NAME3 192.168.3.2-192.168.3.254 mask 255.255.255.0
ip local pool NAME4 192.168.4.2-192.168.4.254 mask 255.255.255.0
ip local pool NAME5 192.168.5.2-192.168.5.254 mask 255.255.255.0

Open in new window

0
c-h-r-i-s-t-o-p-h
Asked:
c-h-r-i-s-t-o-p-h
  • 2
1 Solution
 
lrmooreCommented:
You can't really "deactivate" a pool. Either you assign the pool to a policy, or you leave it alone.
Just the act of defining the pool does not "activate" it anyway. You must select that pool to assign addresses in a VPN group policy.
0
 
c-h-r-i-s-t-o-p-hAuthor Commented:
What command assigns the pool to a policy?
0
 
lrmooreCommented:
tunnel-group <GROUP> general-attributes
 address-pool NAME



0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Network Scalability - Handle Complex Environments

Monitor your entire network from a single platform. Free 30 Day Trial Now!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now