Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1295
Views
0
Helpful
1
Replies

ASA ADSM: S2S-Tunnel peer IP address and the interface were greyed out

rherud
Level 1
Level 1

‎06-26-2019 06:48 AM - edited ‎02-21-2020 09:14 AM

Hello everybody,


I had to change a S2S-Tunnel peer IP address on the ASA (OS rel. 9.1(7)23, ASDM rel. 7.9(1)) because they got a new one from their ISP. I tried this in the ASDM under:
Configuration > Site-to-Site VPN > Connection Profiles
but the S2S-Tunnel peer IP address and the interface were greyed out (see image).

ASDM - S2S-Tunnel Peer-IP greyed out.JPG

I checked this at other tunnels and there was the same.


The tunnel was down and the admin user has priv. level 15 so I don't understand why I was not able to

change the S2S-Tunnel peer IP address.


I could change the IP address then in the CLI by changing the crypto map and made a new tunnel group.

But I want to know the reason why the S2S-Tunnel peer IP address and the interface was greyed out

in ASDM.

Any ideas?

Thanks a lot for your hints!!!




Greatings from Germany

Preview file
79 KB
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎06-26-2019 08:23 AM

These "why" questions are hard to answer ...

Probably because not enough big customers asked for that feature and it is just not implemented. It's a little bit like renaming objects. Initially it was not implemented, but later the feature was available.

 

For now, as you already found out, you have to duplicate the tunnel-group with the new name (ip) and and adjust all corresponding configuration.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card