Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
763
Views
0
Helpful
2
Replies

VPN Tunnel Disruption through VMS

pkinzel
Level 1
Level 1

‎11-09-2004 12:57 PM - edited ‎02-20-2020 11:44 PM

I am in the process of setting up VMS and have noticed that with every 'save and deploy' that I do, that all of my Pix's (which run VPN's) are given the following commands:

‘no crypto map x interface outside’

‘crypto map x 20 set security-association lifetime seconds 28800 kilobytes 4608000’

‘crypto map x interface outside’

These lifetime parameters do not show up in the config of the Pix and have never been configured. I can not remove the parameters from the IPSec Tunnel Template (or even set them to zero).

How do I stop these 3 commands from taking down my VPN tunnels with every change I make though VMS?

0 Helpful
2 Replies 2

Not applicable

‎11-16-2004 10:04 AM

Try this:

Change the crypto map x to use sequence number "1" manually on the PIX. Then remove this IPsec policy from VSM. Check if the auto termination of the tunnel stops now.

0 Helpful

pkinzel
Level 1
Level 1
In response to

‎11-16-2004 02:59 PM

If I understand your suggestion, if I remove this IPsec tunnel (which is what I assume you mean from 'policy') from VMS, I can no longer make changes to it through VMS, which I would like to do.

Any changes made directly on the Pix will not be replicated to VMS without reimporting the device.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card