cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1682
Views
0
Helpful
2
Replies
Highlighted
Beginner

Cisco Router VPN to Juniper - need phase 1 Main Mode

  Experts,

Good afternoon, I have been researching all day long and I can not find the difference on how to configure phase 1 main mode versus phase 1 aggressive mode.

I am trying to setup a vpn tunnel to a Juniper device.

The peer needs to have main mode in order for phase 1 to connect.

My questions:

1. How do I configure main mode and aggresive mode?

2. What is the default behavior for the VPN Lan2Lan tunnel.

Thanks for the help.

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted

The command to disable aggressive mode is:

crypto isakmp aggressive-mode disable

OP:

What Juniper device are you connecting to? An SSG?

View solution in original post

2 REPLIES 2
Highlighted
Beginner

Hi there,

1. The default behaviour for the VPN L2L tunnel is main mode and aggresive mode is used for EZVPN client type of implementations.

2. To turn off aggresive mode on IOS router, i think you will have do a ' no crypto isakmp -----' if i memory is right:)

There is a detailed explanation of the MM and aggresive setup in the CSC forum..have a look there..

Thanks.

Highlighted

The command to disable aggressive mode is:

crypto isakmp aggressive-mode disable

OP:

What Juniper device are you connecting to? An SSG?

View solution in original post

Content for Community-Ad