Firewall Wizards: Re: Pix 520 tunnels

[Farrukh Haroon <farrukhharoon () gmail com>]

Hello John

You need to make sure that the dynamic crypto map entry is higher than the
static crypto map(s).

Please have a look at the below link:

http://supportwiki.cisco.com/ViewWiki/index.php/How_to_configure_Site-to-Site_VPN_client_connection_on_the_same_PIX

Regards

Farrukh
On Tue, Jun 23, 2009 at 7:08 PM, Halchishak, John <jhalchishak () ciber com>wrote:

>  We have two pix (actually three, one failover) 520s that I’m trying to
> setup multiple tunnels. The two office locations have a tunnel up between
> them with 2 peer address on the main end and a single on the other. We have
> need to establish other tunnels at various times to clients. I can’t seem to
> get a second tunnel up without adding it to the existing named tunnel config
> as a third peer and even then it tends to flap our tunnel between the
> offices. Is there some way to accomplish this scenario without causing our
> tunnel problems?
>
>
>
>
>
> *John Halchishak*
>
> *14746 N. 78th Way*
>
> *Scottsdale, AZ 85260*
>
> *480-624-4927*
>
> *480-621-2252 wc*
>
> *623-505-8905 pc*
>
> * *
>
> [image: CIBER - "An Ethic of Excellence"]
>
>
>
>
>
>
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () listserv icsalabs com
> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards