Re: IPSEC with AHP

From: Andrew G. Mason (andrew@xxxxxxxxxxxxx)
Date: Mon Oct 08 2001 - 09:04:14 GMT-3

• Next message: Michal Kozisek: "RE: IPSEC with AHP"
• Previous message: Khalid Nafie: "IPSEC with AHP"
• Maybe in reply to: Khalid Nafie: "IPSEC with AHP"
• Next in thread: Michal Kozisek: "RE: IPSEC with AHP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Hi,

Within an IPSec transform-set you can select ESP, AH, or both. ESP now
supports authentication so this somewhat negates the requirement for AH.
Therefore, if you are only using ESP, you do not need to permit AH and
vice versa.

Cheers.

Andrew..

> Hi there,
> I was trying the ACL with the IPSEC, but it was working without
> permit the AHP protocol to pass, even after blocking udp 500 to pass
(but
> after the connection was established), So the question is when do i
need to
> permit AHP protocol to pass to allowipsec to work?
>
> ================================================
> Yours,
> Khaled Nafie
> Network Engineer
> Customer Services
> MCSE,CCDP,CCNP VOICE ACCESS
> NCR Corporation, Kuwait
> Mob.: +965-9872046
> Tel : +965- 2412201, 2412203
> Fax : +965-2413075

• Next message: Michal Kozisek: "RE: IPSEC with AHP"
• Previous message: Khalid Nafie: "IPSEC with AHP"
• Maybe in reply to: Khalid Nafie: "IPSEC with AHP"
• Next in thread: Michal Kozisek: "RE: IPSEC with AHP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 22:33:14 GMT-3