Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Restoring VPN tunnel after ISP Switch

Status
Not open for further replies.

ScottWIT

IS-IT--Management
May 22, 2007
145
US
I have a Cisco 2801 Router where I'm located and we have a site to site VPN tunnel that connects us to a different location that has a Cisco PIX 506E. This weekend we are switching ISP's so I will have a new set of public IP addresses. After I change my router's config the config on the Cisco PIX 506E will need to be changed in order to restore the tunnel. From looking at it the two lines in the 506E config pertaining to the VPN tunnel that contain our "old" IP address are:

crypto map VPNMAP 10 set peer xx.xx.xx.xxx

isakmp key ******** address xx.xx.xx.xxx netmask 255.255.255.255 no-xauth no-con

From my understanding I just need to put a "no" in front of these commands to remove them. Is that correct? Do I need to use any other commands?

Also.... when I put these commands back in with the new IP address do I need to know what the isakmp key is? Because it just shows asterisks in the running config.

Anything else I should know regarding restoring the VPN tunnel after this ISP switch?


 
The ISAKMP key should show up in the 2801, or you can configure a new one (recommended, actually). Also, the "no" form of the commands will remove them from both the PIX and the 2801. You should be good---it seems you know what to do then.

Burt
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top