10-11-2012 07:36 PM
Dear
Is that possible to only use ikev2 for two 5505 ASA site to site VPN. Any advantage and disadvantage?
Regards
Alan.
Solved! Go to Solution.
10-11-2012 07:54 PM
No, IKEv2 is actually more secure than IKEv1, so you are on the right track.
10-11-2012 07:43 PM
Definitely possible, but you would need to be running version 8.4 or later.
Here is the configuration guide for your reference:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080bb8500.shtml
Advantage is included in the above document (it's enhancement of IKEv1).
Disadvantage that i can think off is this is fairly new, so you might find bug every now and then.. but that comes with any new feature until one perfected the feature
10-11-2012 07:49 PM
Dear Jennifer
When I setup ikev2 site to site VPN. I did not choose the check box from ikev1. Is that any issue for security? I have only check ikev2 in ASDM site to site configuration, it seems VPN connection work fine.
Best Regards
Alan.
10-11-2012 07:54 PM
No, IKEv2 is actually more secure than IKEv1, so you are on the right track.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide