12-26-2007 08:38 AM - edited 03-09-2019 07:43 PM
Hi all,
I have created easy VPN with ASA5505 at BO and 3000 concentrator at HQ. Everything works great, but when the BO ASA reboots, it looses the 'Vpnclient enable' command (even after write mem) and adds the below commands:
nat (INSIDE1) 0 _vpnc_nwp_acl
aaa authentication listener http INSIDE1 port www redirect
aaa authentication listener https INSIDE1 port 1443 redirect
Unless I remove all these commands (see below) , Iam unable to enable 'vpnclient enable' command.
****************************************
HOMETEST(config)# vpnclient enable
* Remove "nat (INSIDE1) 0 _vpnc_nwp_acl"
* Remove 'aaa authentication listener' configuration
*****************************************
The ASA5505 has a Base license.
Please advise.
Thank you
MS
12-26-2007 11:18 AM
Hi All,
I just found the reason for "aaa authentication listener' commands. This is bug in the sw. Bug ID: CSCsh75977.
Need to upgrade/dopwngrade software, then have to check on other thing {nat (INSIDE1) 0 _vpnc_nwp_acl }
Thank you
MS
05-01-2008 03:15 AM
It's a known bug in 7.2
http://www.cisco.com/cgi-bin/Support/Bugtool/onebug.pl?bugid=CSCsh75977
I upgraded to v8 and all is well.
Tony
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide