RE: More IPSec questions.

From: Chuck Church (cchurch@xxxxxxxxxxxx)
Date: Thu Feb 22 2001 - 17:01:56 GMT-3

Next message: Vijay Venkatesh: "Re: Adding vty lines"
Previous message: NoOne Important: "Apologize to Andrew Short"
Maybe in reply to: fwells12: "More IPSec questions."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Lm,

The people on this list will be much more willing to help you if you
send messages in plain text format. Other users on this list use Hotmail,
so there must be a way.

Chuck Church
CCNP, CCDP, MCNE, MCSE
Sr. Network Engineer
Magnacom Technologies
140 N. Rt. 303
Valley Cottage, NY 10989
845-267-4000 x218

-----Original Message-----
From: NoOne Important [mailto:lm_nguyen@hotmail.com]
Sent: Thursday, February 22, 2001 12:58 PM
To: fwells12@hotmail.com; ccielab@groupstudy.com
Subject: Re: More IPSec questions.

<html><DIV>
<P>COMMSERVER(config-crypto-map)#set ?<BR> 
algorithm           &
nbsp; Encryption/Decryption algorithms to use.<BR> 
peer            
      Allowed Encryption/Decryption peer.<BR> 
security-association  Security association parameters<BR> 
transform-set         Specify list
of transform sets in priority order</P>
<P> </P>
<P>My router can do that fine and i am only using ik2o3s-mz.120-7.T.bin</P>
<P>my suggestion is to erase the old config completely before try that
scenario on you routers.<BR><BR></P></DIV>
<DIV></DIV>
<DIV></DIV>>From: "fwells12" <FWELLS12@HOTMAIL.COM>
<DIV></DIV>>Reply-To: "fwells12" <FWELLS12@HOTMAIL.COM>
<DIV></DIV>>To: <CCIELAB@GROUPSTUDY.COM>
<DIV></DIV>>Subject: More IPSec questions.
<DIV></DIV>>Date: Wed, 21 Feb 2001 21:33:29 -0800
<DIV></DIV>>
<DIV></DIV>>I have 12.1.5T Enterprise/FW IPSec 56 installed on my two
IPSec routers. =
<DIV></DIV>> I am trying to get a handle on IPSec-manual keying
procedures. I have =
<DIV></DIV>>just attempted once more to configure the following lab on
CCO:=20
<DIV></DIV>>
<DIV></DIV>>http://www.cisco.com/warp/public/707/manual.html
<DIV></DIV>>
<DIV></DIV>>Im my IOS I could not find the commands for any of the 'set =

<DIV></DIV>>security-association' parameters. The only option I had that
had the =
<DIV></DIV>>same parameters was 'set session-key'. I copied the configs
with the =
<DIV></DIV>>exception of those parameters and it does not work thus far.
Does =
<DIV></DIV>>anyone know if this is the equivalent of the 12.0 IOS command
'set =
<DIV></DIV>>security association' etc, or am I completely overlooking
something =
<DIV></DIV>>here?
<DIV></DIV>>
<DIV></DIV>>I would also like to find some more examples of IPSec Manual
Keying if =
<DIV></DIV>>anyone knows any more please.
<DIV></DIV>>
<DIV></DIV>>Cheers
<DIV></DIV>>

Next message: Vijay Venkatesh: "Re: Adding vty lines"
Previous message: NoOne Important: "Apologize to Andrew Short"
Maybe in reply to: fwells12: "More IPSec questions."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:28:57 GMT-3