Tyson,
No it was not a IPEXPERT lab. Johan From: Tyson Scott [mailto:[email protected]] Sent: 20 January 2010 17:54 To: 'Johan Bornman'; 'Kingsley Charles'; 'Bartlett Graham A' Cc: 'Simon Baumann'; [email protected] Subject: RE: [OSL | CCIE_Security] Question about DH group. I will be honest I didn't even notice that DH G 14, 15, and 16 were added. I would say these are not applicable to the current exam as I don't think they are using higher than 12.4(15)T Yet. The command reference only lists IOS XE as the introduction of these groups. So sometime between 12.4(15)T and 12.4(24)T it was introduced. IOS EasyVPN Hardware Client only supports Group 2 currently. the Software Client as of version 5.0 actually prefers group 5. But if you have to support both you must choose group 2. Johan was that one of our labs that said that because if so looks like I need to update it? Regards, Tyson Scott - CCIE #13513 R&S, Security, and SP Technical Instructor - IPexpert, Inc. Mailto: [email protected] Telephone: +1.810.326.1444, ext. 208 Live Assistance, Please visit: www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Classroom and Self-Study Cisco CCNA (R&S, Voice & Security), CCNP, CCVP, CCSP and CCIE (R&S, Voice, Security & Service Provider) Certification Training with locations throughout the United States, Europe and Australia. Be sure to check out our online communities at www.ipexpert.com/communities and our public website at www.ipexpert.com From: [email protected] [mailto:[email protected]] On Behalf Of Johan Bornman Sent: Wednesday, January 20, 2010 6:48 AM To: 'Kingsley Charles'; 'Bartlett Graham A' Cc: 'Simon Baumann'; [email protected] Subject: Re: [OSL | CCIE_Security] Question about DH group. I lab'd a task last night where the requirement was the "strongest possible" DH, in the solution 5 was used. From: [email protected] [mailto:[email protected]] On Behalf Of Kingsley Charles Sent: 20 January 2010 13:43 To: Bartlett Graham A Cc: Simon Baumann; [email protected] Subject: Re: [OSL | CCIE_Security] Question about DH group. In the examination, which group do we need to use for EzVPN server? Cisco recommends to use Group 2 for EzVPN server With regards Kings On Wed, Jan 20, 2010 at 5:01 PM, Bartlett Graham A <[email protected]> wrote: Simon Hopefully this will clear it up for you mate http://www.ietf.org/rfc/rfc3526.txt -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Simon Baumann Sent: 20 January 2010 11:21 To: [email protected] Subject: [OSL | CCIE_Security] Question about DH group. Hi, I noticed that IOS offers options 1,2,5 and (new to me) 14,15 and 16 for the DH group. Are the last groups new? Could I use it like the other groups or are there limitations (except for the other side not supporting it)? TIA. Cheers Simon _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com <http://www.ipexpert.com/> "This e-mail is intended for the recipient only. If you are not the intended recipient you must not use, disclose, distribute, copy, print, or rely upon this e-mail. If an addressing or transmission error has misdirected this e-mail, please notify the author by replying to this e-mail." "Recipients should note that all e-mail traffic on MOD systems is subject to monitoring and auditing." _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com <http://www.ipexpert.com/>
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
