Solved: cisco asa query reg vpn creation

secureIT · ‎02-09-2011

hi,

i have a query regarding the no. of isakmp policy priority creating..

when i create a new policy in ASA 5500 firewall, i get the below error...i assume it will support only 20 nos, where as we can use between 1-65535.. can anyone from cisco confirm it...running version is 8.x & VPN Plus license.

Policy limit reached. No more than 20 isakmp policies can be configured.”

Jennifer Halim · ‎02-09-2011

Yes, you are right. 20 is the limit number of isakmp policies that can be created in the ASA.

Do you actually have a need to configure more than 20 isakmp policies? The recommendation is to create policies that is required only, not to create all different combination of policies.

Here is the configuration guide and it does specify the limit of 20 isakmp policies:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ike.html#wp1066879

Hope that answers your question.

View solution in original post

Jennifer Halim · ‎02-09-2011

Yes, you are right. 20 is the limit number of isakmp policies that can be created in the ASA.

Do you actually have a need to configure more than 20 isakmp policies? The recommendation is to create policies that is required only, not to create all different combination of policies.

Here is the configuration guide and it does specify the limit of 20 isakmp policies:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ike.html#wp1066879

Hope that answers your question.

secureIT · ‎02-09-2011

thank you jennifer, thats right...i had gone thru the document before itself. But i wanted a confirmation from netpro team.

thanks a lot.