The output included is from the remote 5505 that is connecting a VPN to our main campus Firewall 5520. The VPN is working fine but, the other day I tried to add VLAN 28 to the VPN. It is not working. I believe I have entered exactly what I entered for the other VLANs. I've heard that sometimes you have to re-apply the cryptomap. Is this true? If not, do you have any other ideas?

Thanks, Pat

names

name 192.168.1.0 sjh_vlan2

name 192.168.2.0 sjh_vlan5

name 192.168.3.0 sjh_vlan6

name 192.168.4.0 sjh_vlan3

name 192.168.5.0 sjh_vlan12

name 192.168.6.0sjh_vlan17

name 192.168.7.0 sjh_vlan28

access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan2 255.255.252.0
access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan5 255.255.252.0
access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan6 255.255.252.0
access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan3 255.255.255.0
access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan12 255.255.255.0
access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan17 255.255.255.0
access-list outside_1_cryptomap extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan28 255.255.255.0

access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan2 255.255.252.0
access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan5 255.255.252.0
access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan6 255.255.252.0
access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan3 255.255.255.0
access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan12 255.255.255.0
access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan17 255.255.255.0
access-list inside_nat0_outbound extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan28 255.255.255.0

access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan2 255.255.252.0
access-list inside_access_in remark Allow unrestricted access to SJH network
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan5 255.255.252.0
access-list inside_access_in remark Allow unrestricted access to SJH network
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan6 255.255.252.0
access-list inside_access_in extended permit udp 10.10.10.0 255.255.255.0 any eq domain
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan3 255.255.255.0
access-list inside_access_in remark Allow unrestricted access to SJH network
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan12 255.255.255.0
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan17 255.255.255.0
access-list inside_access_in extended permit ip 10.10.10.0 255.255.255.0 sjh_vlan28 255.255.255.0