04-28-2020 04:25 AM
My Cisco Firepower 2110 crashed in the middle of a deployment. After it came up I cannot define my SIte-Site VPN. I get the error message "ERROR: Group Policy |s2sGP|<ip removed> already exists. ERROR: Failed to add group-policy |s2sGP|<ip removed>". When i checkl the running config there is both a tunnel-group and a group-pøolicy with the referenced IP-adress. But this Site-Site VPN isn't visible in the Web GUI (standalone). How do I get aroiund this error. Should I remove the tunnel-group and group-policy objects, and if yes, what is the CLI command for doing so?
Thx in
04-28-2020 04:50 AM
I have had similar issues and had to get TAC involved to solve them as they needed to do changes through the FTD CLI.
I suggest opening a case with TAC.
04-28-2020 05:49 AM
OK, Thanks for your reply. I had kinda hoped to avoid bringing in TAC, but perhaps there is no other option :-)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide