Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1063
Views
0
Helpful
3
Replies

Cisco ASA - 2 - Juniper Firewall

Ariel Davenport
Level 1
Level 1

‎06-26-2013 07:56 AM

I am trying to setup a site to site between a cisco and a juniper. The IT dept. ont he other side sent me this:

Peer IP: 111.111.111.111

Phase 1: pre-g2-3des-sha1

Phase 2: nopfs-esp-3des-sha1

Security Association Lifetime Value (Seconds)

Phase 1: 28800

Phase 2: 3600

Network: 10.195.0.0/16

Waiting on the PreShared Key

The phase 1 & 2 looks different that what I have seen with Cisco. What is the config I would nee to connect to this?

Labels:
0 Helpful
3 Replies 3

Shaoqin Li
Level 3
Level 3

‎06-26-2013 08:16 AM

as I remember juniper fw sends hostname instead of ip as identity. so you have to create a tunnel group whose name is peer's name , instead of ip.

Sent from Cisco Technical Support iPad App

0 Helpful

prashantrecon
Level 1
Level 1
In response to Shaoqin Li

‎09-15-2013 09:07 PM

Hi ,

i have a doubt , is cisco asa 5520 version 8.2 support sha1 configuration in site to site turnel ?

My client send me phase 2 like AES 128 , sha1 , but i am not able to see sha1 while configure this site to site vpn

Regards,

Prashant

0 Helpful

prashantrecon
Level 1
Level 1
In response to prashantrecon

‎11-18-2013 01:31 AM

in cisco sha(sha1 is same thing)

problem is resolved by matching the exact replica of phase2 Network address.

Regards,

Prashant

0 Helpful
Customers Also Viewed These Support Documents