Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a site-to-site IPSEC tunnel.. Works fine..I'm using preshared secret.. the problem is that if I run an NMAP scan against my outside IP of the PIX firewall it shows that ISAKMP both TCP/UDP is open..I tried ACL's on the outside interface but st...
show isakmp policy gives me my out put as follows.Protection suite of priority 20 encryption algorithm: Three key triple DES hash algorithm: Secure Hash Standard authentication method: Pre-Shared Key Diffie-Hell...
I'm presently shaping a network with 15 routers. The network is all cisco with EIGRP running on all routers with VLSM enabled. I'm considering moving to OSPF on WAN links and EIGRP on LAN. Routers are 2600 series and core is a 2948GL3. Network is pre...
what is the minmum number of public ip address required to allow inside - outside internet browsing through a Pix firewall. (not using DHCP from ISP)(1) for outside interface&(1) for PAT addressThe way I see it is (2) static public I.P address.Please...
Code 6.3.Question about phase1 & 2.. I'm I required to create (2) crypto / isakmp statements or is there a way to use only the one?In the below config I'm matching address to MDC_Connect ACL is it required to create basically 2 tunnels?crypto map MDC...
what are possible work arounds? I have a site-to-site IPSEC tunnel and our audit group won't let this pass..Is there another way to setup and IPSEC tunnel with out using ISAKMP ???
Thanks for the post..We are going through a QualysGuard Scan and it comes back stating we are using Weak IPSEC Encryption Settings and to disable (56bit) Des.. I do have a policy defined to use only 3Des but the default is still DES.. sysopt connecti...
