cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
197
Views
0
Helpful
1
Replies
Highlighted
Beginner

ASA ADSM: S2S-Tunnel peer IP address and the interface were greyed out

Hello everybody,


I had to change a S2S-Tunnel peer IP address on the ASA (OS rel. 9.1(7)23, ASDM rel. 7.9(1)) because they got a new one from their ISP. I tried this in the ASDM under:
Configuration > Site-to-Site VPN > Connection Profiles
but the S2S-Tunnel peer IP address and the interface were greyed out (see image).

ASDM - S2S-Tunnel Peer-IP greyed out.JPG

I checked this at other tunnels and there was the same.


The tunnel was down and the admin user has priv. level 15 so I don't understand why I was not able to

change the S2S-Tunnel peer IP address.


I could change the IP address then in the CLI by changing the crypto map and made a new tunnel group.

But I want to know the reason why the S2S-Tunnel peer IP address and the interface was greyed out

in ASDM.

Any ideas?

Thanks a lot for your hints!!!




Greatings from Germany

Everyone's tags (2)
1 REPLY 1
VIP Mentor

Re: ASA ADSM: S2S-Tunnel peer IP address and the interface were greyed out

These "why" questions are hard to answer ...

Probably because not enough big customers asked for that feature and it is just not implemented. It's a little bit like renaming objects. Initially it was not implemented, but later the feature was available.

 

For now, as you already found out, you have to duplicate the tunnel-group with the new name (ip) and and adjust all corresponding configuration.