Mark,
Good catch, I was thinking the same as well. It would be interesting to see
what a �$B!F�(Bshow run | i crypto map�$B!G�(B on the PIX shows with the
relevant interesting traffic ACLs.
-ryan
From: Mark Cairns [mailto:m.a.cairns_at_gmail.com]
Sent: Thursday, July 23, 2009 11:28 AM
To: Ryan West
Cc: Teu Kim Loon �$BD%6SNQ�(B; Alberto Rivai; Cisco certification;
ccielab_at_groupstudy.com
Subject: Re: IPSec VPN - Interesting traffic only trigger crypto map from one
end
Nice little summary of the error message here with someone's previous
experience related to a peer IP that fell within another tunnel's IP proxy
range.
http://www.velocityreviews.com/forums/t37822-pix-acldeny-no-sa-created-one-so
lution.html
Mark
#17755, Security
Blogs and organic groups at http://www.ccie.net
Received on Thu Jul 23 2009 - 11:58:40 ART