Re: Cisco Policy Manager (CSPM3.0) problem with command generati

pambosch · ‎05-21-2002

I'm trying to use CSPM 3.0 for managing a PIX 515 with three interfaces and 4 VPNs terminated on it. I have already configured the PIX with CLI and works fine, but I just acquired CSPM3.0 and want to use it for management. The problem is that after I succesfuly created my exact network topology and configured all policy rules, the command generation feature does not reflect the actual policy rules, even if I saved and updated the database. When I preview the commands generated (before publishing them on the PIX), I notice that these commands do not cover all policy rules that I configured. For example, I have a rule permiting all IP traffic from inside to outside, but the command generation shows an access list which denies ALL outbound traffic. This is just one example....there are many more.

any help please?

Thank you in advance.

Pambos

ciscomoderator · ‎05-28-2002

Often times complex configuration/troubleshooting issues are best addressed in an interactive session with one of our trained technical assistance engineers. While other forum users may be able to help, it’s often difficult to do so for this type of issue.

To utilize the resources at our Technical Assistance Center, please visit http://www.cisco.com/tac and to open a case with one of our TAC engineers, visit http://www.cisco.com/tac/caseopen

If anyone else in the forum has some advice, please reply to this thread.

Thank you for posting.

Cisco Policy Manager (CSPM3.0) problem with command generation