[c-nsp] ASA 8.3/8.4 management issues...

Jeff Kell jeff-kell at utc.edu
Tue Jul 26 11:01:49 EDT 2011


On 7/26/2011 10:58 AM, Ryan West wrote:
> On Tue, Jul 26, 2011 at 10:44:19, Jeff Kell wrote:
>> Subject: [c-nsp] ASA 8.3/8.4 management issues...
>>
>> I have some remote sites running off of ASA 5505s, and an existing VPN 
>> cluster running 8.4(2).
> I've rolled everything back to 8.4.1 interim.  I have an open bug for 8.4(2) relating to remote access VPN tunnels traversing other tunnels (same-security intra-interface).  I would switch back to 8.4.1 and see if your problem follows.  If you're interested in the bugID, I'll let you know once one is generated.
>

Turns out my issue was the "route-lookup" clause on the "new" NAT configuration
commands.  Seems that the "update conversion" of legacy NAT exempt ranges does not
include that by default. Working fine now, haven't hit the intra-interface bug [yet].

Jeff


More information about the cisco-nsp mailing list