Original configuration was one 3640 connecting to 2 2611's using IPSEC using software alone. ISAKMP authentication was by rsa-encr. Was found to be too slow. one nm-vpn/mp and 2 aim-vpn/bp were purchased. Apparently the nodes now can only authenticate with pre-shared keys. Are there any other options for isakmp authentication, such as x.509 certificates? Lots of documentation is available but hardly any for these cards. Some seems contradictory. need straight answer.
Thank you