About crhodes

crhodes · 04-01-2004

Hello,I have a question regarding use of rsa key pairs for authentication when setting up IPsec tunnels.I have a head-end router and multiple remote routers which are administered by multiple third parties.I want to setup a different key pair on my h...

crhodes · 02-12-2004

I have a WAN link between two IOS routers that will be encrypting all traffic via IPsec. I need to prioritise traffic across this link.I'm aware of two methods I can use:a) priority queuing and qos pre-classifyb) manipulation of diffserv bits (TOS) a...

crhodes · 12-18-2003

A client we wish to connect to requires an IPsec link that uses AES256 encryption.If I search for AES256 on CCO I get responses for PIX and 3000 series, but nothing for IOS.Is there any plan for AES256 support in IOS?Thanks in advance for any assista...

crhodes · 09-14-2003

Hi,I'm running IOS c1700-k9o3sy7-mz.123-3.bin IP/ADSL/FW/IDS PLUS IPSEC 3DES on model 1760 router.The above configuration is inserted automatically into the running config. When the config is saved and the router rebooted, the config line is rejecte...

crhodes · 09-10-2003

I have two IOS routers and would like to use the loopback address on the remote router as the peer address as recommended in papers such as "Configuring IPSec with EIGRP and IPX Using GRE Tunneling".On the local router, I identify the remote router v...

crhodes · 02-18-2004

Thanks for that.I've worked out how I can set IP Precedence bits on the ingress of the IOS12.1 router via route-map, however, I don't know how to manage the traffic on the egress interface, given that all traffic is within an IPsec tunnel, and I cann...

crhodes · 09-18-2003

I raised a TAC case on this yesterday given no solution from the CCO forum. The Case is E521810 and the initial response from the TAC engineer is the following:Request for feature was submitted in CSCin46441 - BREAK signal support for SSH . Des...

crhodes · 09-11-2003

Thx, that worked!I poked around the config options prior to the original post, but missed that one.Many thanks

crhodes · 02-20-2003

Thanks,You were correct. The problem turned out to be a configuration issue at the remote router. There was no ppp chap password config line. Once this was installed, ppp authentication succeeded.

crhodes · 02-12-2003

A minimum 76 seconds elapsed (time between keepalive configuration completed and latest log entry) before I issued the sho ip route command and saw the bad route still in the table.

Member Since	‎12-22-2002 09:10 PM
Date Last Visited	‎08-18-2017 03:50 AM
Posts	23
Total Helpful Votes Received	3

User Statistics

User Activity

Multiple rsa key pairs on head-end router

Traffic prioritisation within Ipsec tunnels

Support for AES256 in IOS

ip ssh break-string

Using loopback address to identify IPsec peer

Re: Traffic prioritisation within Ipsec tunnels

Re: ip ssh break-string

Re: Using loopback address to identify IPsec peer

Re: PPP authentication - called router uses router name not ppp

Re: Frame-relay pt-pt subinterface - protocol is up - always