From: kelly@cliffhanger.com
Date: Fri Nov 17 2006 - 11:21:36 ART
I really doubt you can do that. But you don't
relly need to. What you can do is apply a new
policy.
Of the multiple policies you may have configured,
the first one that matches what the other vpn
device has configured is what will be used.
The IOS will simply go through all the variations
until one matches.
-- kelly http://home1.gte.net/res0psau/index.html#Hang-Gliding-Stuff-- -- \ / \/ /\ / \ -- --
Quoting Curt Girardin <curt.girardin@chicos.com>: Team, Does anyone know how to remove the default isakmp policy that is on the 2600 or 3600 series routers? For example: Rack1R3#show crypto isakmp policy Global IKE policy Default protection suite encryption algorithm: DES - Data Encryption Standard (56 bit keys). hash algorithm: Secure Hash Standard authentication method: Rivest-Shamir-Adleman Signature Diffie-Hellman group: #1 (768 bit) lifetime: 86400 seconds, no volume limit How do we either get rid of this policy, or make the router not OFFER or USE it? Thanks, Curt _______________________________________________________________________ Subscription information may be found at: http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:47 ART