Hi,
I configured a router to establish a vpn tunnel with a cisco vpn client..
Everything was fine..could connect and stuff..
I saved my config, copy and pasted it and it wrong work anymore...on the same
device!!!
after doing a " debug crypto isakmp error" I get these when trying to connect
again
ISAKMP: atts are not acceptable . Next payload is 3 Encryption algorithm
offered does not match policy.
..here is my config
!
aaa new-model
!
!
aaa authentication login default local
aaa authentication login test none
aaa authorization exec default local
aaa authorization network sdm_vpn_group_ml_1 local
aaa authorization reverse-access test none
aaa session-id common
!
!
username vpn password 0 xxxxx
!
!
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp policy 3
encr 3des
group 2
!
crypto isakmp client configuration group WG1_1
key juniper
pool SDM_POOL_1
acl 101
!
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
!
crypto dynamic-map SDM_DYNMAP_1 1
set transform-set ESP-3DES-SHA
reverse-route
!
!
crypto map SDM_CMAP_1 client authentication list sdm_vpn_xauth_ml_1
crypto map SDM_CMAP_1 isakmp authorization list sdm_vpn_group_ml_1
crypto map SDM_CMAP_1 client configuration address respond
crypto map SDM_CMAP_1 65535 ipsec-isakmp dynamic SDM_DYNMAP_1
!
!
access-list 101 permit ip any any
!
ip local pool SDM_POOL_1 10.1.1.5
!
any idea? Thanks in advance
Abderahim
Received on Tue Oct 20 2009 - 18:13:13 ART
This archive was generated by hypermail 2.2.0 : Sun Nov 01 2009 - 07:51:00 ART