02-27-2019 11:56 PM
can someone please explain what proposals "as in the attached picture" do in a vpn? do they need to match at both sides? i thought parameters needs= to match only in phase 1 and phase 2 "hash, authen , group , lifetime , encryption" what is proposal job in setting up vpn connection?
02-28-2019 02:40 AM
You have to specify both the Phase1 and Phase2 settings. The mentioned ones (hash, authen , group , lifetime , encryption) are phase1 and the screenshot is a config for phase2 that you will later reference in your crypto-config.
03-03-2019 12:05 AM
03-03-2019 02:49 PM
ESP stands for the Encapsulating Security Payload which is the IP protocol used for encrypted traffic in the VPN. Perhaps this link will have information which could be helpful.
https://en.wikipedia.org/wiki/IPsec#Encapsulating_Security_Payload
HTH
Rick
03-06-2019 04:10 AM
03-06-2019 04:31 AM
Yes, the screenshot is of the IPSec Transform Set (Phase 2), these values here need to match the values configured on the peer device in order to successfully establish a VPN tunnel.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: