From: Curt Girardin (curt.girardin@chicos.com)
Date: Sun Nov 19 2006 - 16:32:12 ART
Hi,
No I just wanted to know if it could be done. I could imagine getting
such a request on the lab-exam and having no idea how.
Looks like it's not possible though. About the only thing you can do is
add more preferential policies in front of it so if there is a match,
those would get chosen first.
Thanks,
Curt
________________________________
From: Parminder Pal Singh [mailto:parminderpalsingh@gmail.com]
Sent: Saturday, November 18, 2006 7:44 AM
To: Curt Girardin
Cc: ccielab@groupstudy.com; security@groupstudy.com
Subject: Re: remove default isakmp policy
Hi Curt,
Is there any specific reason you want to delete the default ISAKMP
policy? What are you trying to achieve by doing this?
Thanks
Parminder
On 11/17/06, Curt Girardin <curt.girardin@chicos.com> wrote:
Team,
Does anyone know how to remove the default isakmp policy that is
on the
2600 or 3600 series routers?
For example:
Rack1R3#show crypto isakmp policy
Global IKE policy
Default protection suite
encryption algorithm: DES - Data Encryption Standard
(56 bit
keys).
hash algorithm: Secure Hash Standard
authentication method: Rivest-Shamir-Adleman Signature
Diffie-Hellman group: #1 (768 bit)
lifetime: 86400 seconds, no volume limit
How do we either get rid of this policy, or make the router not
OFFER or
USE it?
Thanks,
Curt
This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:47 ART