RE: Cisco Workaround

From: Douglas Gullett (
Date: 08/02/03

  • Next message: N407ER: "Re: encrypted files to ntfs"
    To: "Adam Overlin" <>, <>
    Date: Sat, 2 Aug 2003 11:49:01 -0400


    If the "cheat" sheet you are referring to is the Cisco Security Alert, I am
    guessing that you put in their access-list. For IPSEC you need to have
    Protocol Port 51 (ESP) and Protocol Port 52 (AH) open, as well as UDP Port
    500 (isakmp).


    -----Original Message-----
    From: Adam Overlin []
    Sent: Thursday, July 31, 2003 12:59 PM
    Subject: RE: Cisco Workaround

    I just joined this list so I haven't seen the whole thread on this issue,
    thus my company's particular issue may have been discussed already, but I
    thought I would see if I could get some help anyway.

    We have a Cisco 827 router and a PIX 506e locally. Router being in front of
    the PIX. We also have a co-location facility that we are connected via a
    constant VPN tunnel. There we have a PIX 515e. The two pixes are what
    control the VPN/encryption.

    The pixes don't run IOS so we didn't have to worry about upgrading those.
    However, the router does. So we upgraded the router to the latest version.
    Everything worked ok, except, the VPN tunnel. That got knocked out. Keep
    in mind that I am no Cisco expert. I did the upgrade with the help of a
    *cheat* sheet that Cisco sent us. All I did was copy the information. I
    didn't really understand what I was actually typing into the console (we
    have another network consultant that is responsible for the "understanding
    part, although he didn't know why it wasn't working either). :)

    So after a little messing around we reverted back to the old IOS and
    everything was peachy. A couple days later they sent us another version to
    upgrade with and that did the same thing. Needless to say, we are still

    If there are any suggestions out there, I would really appreciate it. If I
    didn't give enough info, please let me know, and I will get you whatever you
    need (within my power of course).

    Thanks in advance,



  • Next message: N407ER: "Re: encrypted files to ntfs"

    Relevant Pages

    • RE: Cisco Workaround
      ... We have a Cisco 827 router and a PIX 506e locally. ... upgrade with and that did the same thing. ...
    • Re: Cisco Aironet 1200 Access point
      ... software but I cant get the Ion software to upgrade, ... ping IP address of TFTP server to ensure it is reachable ... The cisco documents are quite easy to follow once you get started. ... What document are you reading and where are you stuck? ...
    • Re: FLASH Write Error #5 on Aironet 350
      ... Prerequisites for the conversion of the VxWorks-based Cisco Access ... For more information on how to upgrade an AP to Cisco IOS firmware ... refer to Using the Conversion Tool: ... VxWorks bootloader is overwritten during the upgrade process. ...
    • RE: Cisco Workaround
      ... Actually the "cheat" sheet was just instructions for installing the new IOS. ... Subject: Cisco Workaround ... upgrade with and that did the same thing. ...
    • Re: Sarge Upgrade DEBOCLE ! ! !
      ... operating systems including MS NT, 2000, 2003, Cisco IOS, Cisco CatOS, ... best to manage and the easiest to upgrade. ... > I don't know why you used dselect to do this. ...