Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
360
Views
0
Helpful
2
Replies

VPN with PIX 515E/site-to-site/ipsec/IKE

rameshpillai
Level 1
Level 1

‎01-21-2005 04:17 AM - edited ‎02-21-2020 01:33 PM

hi

i have cisco pix 515e Version 6.3(3) and w3k CA server with Simple Certificate Enrollment Protocol (SCEP) Add-on for Certificate Services

M trying to configure IKE and IPSEC

i have used following commands

ca identity itlca 192.168.201.15:/CERTSRV/mscep/mscep.dll

ca authenticate itlca

am able to ping from pix to the ca server

I cant figure out where the problem is how do i debug this situation to see where i am getting stuck

regds

Ramesh

Labels:
0 Helpful
2 Replies 2

manpowerpix
Level 1
Level 1

‎01-21-2005 04:26 AM

Hi, you can use in your terminal follow commands for debuging

to activate debug use :

1. debug crypto ipsec

2. debug crypto isakmp

to deactivate debug use :

no debug crypto ipsec

no debug crypto isakmp

You will see all about your IPSec connections.

Wish you good luck.

Bye,

Sakis.

0 Helpful

slmansfield
Level 4
Level 4

‎02-10-2005 08:12 PM

I found this URL helpful for troubleshooting both the router and the PIX. I think you need "ca configure CAserver ra 1 20 crloptional" on the PIX (CAserver is your CA server).

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800946c0.shtml

0 Helpful
Customers Also Viewed These Support Documents