isakmp policy 1 authentication rsa-sig
hash sha encryption aes (not sure about 192 and 256) group 2 Regards, Tyson Scott - CCIE #13513 R&S, Security, and SP Managing Partner / Sr. Instructor - IPexpert, Inc. Mailto: [email protected] Telephone: +1.810.326.1444, ext. 208 Live Assistance, Please visit: www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at www.ipexpert.com/communities and our public website at www.ipexpert.com <http://www.ipexpert.com/> From: [email protected] [mailto:[email protected]] On Behalf Of Kingsley Charles Sent: Tuesday, October 05, 2010 9:01 AM To: [email protected] Subject: [OSL | CCIE_Security] ISAKMP policy for EzVPN client Hi all I have always hit this. Only some ISAKMP policies combination are sent by VPN client. Following are list of Remote VPN cases: VPN client + ASA server VPN client + IOS server IOS client + ASA server IOS client + IOS server I observed that policy is accepted by ASA from the VPN client crypto isakmp policy 1 authentication pre-share encryption des hash md5 group 2 Can anyone suggest the best ISAKMP policy combination that will work fine for all the four cases that I have mentioned above. With regards Kings
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
