Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
399
Views
0
Helpful
1
Replies

Site to Site VPN. ISP Change Issue

csaravanan
Level 1
Level 1

‎03-05-2008 11:05 AM - edited ‎02-21-2020 03:36 PM

Hi All,

I have site to site vpn established with one of my client office. The client is changing their ISP now.

I am wondering whether I need to delete the existing site to site vpn and recreate a new one with their new public IP address or do I just need to change the existing peer public IP with the new IP they are changing to.

Also can someone let me know, what command should I use to delete the existing site to site vpns

I am using Cisco PIX 515 with 7.2 OS running

Thanks,

Chandru

Labels:
0 Helpful
1 Reply 1

husycisco
Level 7
Level 7

‎03-05-2008 12:12 PM

Hi Chandru

Since tunnel-group name must match the peer IP, you should delete the tunnel-group and re-create it with the new peer IP.

Only entry is the peer IP entry in cryptomaps to change, no need to start from scratch. So what you have to do is...

1)Copy and paste your tunnel-group contents to a notepad, change the name to new address, type "clear tunnel-group oldIP" or "clear config tunnel-group oldIP" or "no tunnel-group oldIP". Then paste the modified entry in notepad.

2)Change the peer IP in cryptomap entry

no crypto map outside_map xxx set peer oldIP

crypto map outside_map xxx set peer newIP

If you like, post your current config and new IP of remote peer, and let me suggest you the exact changes

Regards

0 Helpful
Customers Also Viewed These Support Documents