RE: IPSEC with AHP

From: Michal Kozisek (Michal.Kozisek@xxxxxxxx)
Date: Mon Oct 08 2001 - 09:13:18 GMT-3

• Next message: Khan Munib: "Lab in South Africa"
• Previous message: Andrew G. Mason: "Re: IPSEC with AHP"
• Maybe in reply to: Khalid Nafie: "IPSEC with AHP"
• Next in thread: Tony Brown: "RE: IPSEC with AHP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Hi Khaled,
you need to permit AHP in ACL only in situation when you are
using AH protocol (defined in IPSec transform-set).
AH protocol is not so often used especially when you have
tunnel mode.

Michal

-----Original Message-----
From: Khalid Nafie [mailto:knafie@ncr.com.kw]
Sent: Monday, October 08, 2001 1:52 PM
To: Ccielab (E-mail)
Subject: IPSEC with AHP

Hi there,
        I was trying the ACL with the IPSEC, but it was
working without
permit the AHP protocol to pass, even after blocking udp 500
to pass (but
after the connection was established), So the question is
when do i need to
permit AHP protocol to pass to allowipsec to work?

================================================
Yours,
Khaled Nafie
Network Engineer
Customer Services
MCSE,CCDP,CCNP VOICE ACCESS
NCR Corporation, Kuwait
Mob.: +965-9872046
Tel : +965- 2412201, 2412203
Fax : +965-2413075

• Next message: Khan Munib: "Lab in South Africa"
• Previous message: Andrew G. Mason: "Re: IPSEC with AHP"
• Maybe in reply to: Khalid Nafie: "IPSEC with AHP"
• Next in thread: Tony Brown: "RE: IPSEC with AHP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 22:33:14 GMT-3