08-04-2020 03:49 AM
Hello,
We were suggested to disable isakmp Aggressive mode on Cisco Routers and on ASAs due to vulnerability reaso.
How will disabling this affect on current VPN connections on these devices?
08-04-2020 04:25 AM
Hi,
You can use the command "crypto isakmp aggressive-mode disable".
08-04-2020 04:32 AM
Thank you for the replay.
My main concern is what happens to current VPN connections after disabling aggressive-mode.
08-04-2020 05:23 AM - edited 08-04-2020 05:23 AM
Hi,
VPN will disconnect during the next key renew time and VPN will try with main mode.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide