Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2074
Views
0
Helpful
2
Replies

Cisco Router VPN to Juniper - need phase 1 Main Mode

Go to solution
Ranbeckycr_2
Level 1
Level 1

‎06-10-2011 01:57 PM

  Experts,

Good afternoon, I have been researching all day long and I can not find the difference on how to configure phase 1 main mode versus phase 1 aggressive mode.

I am trying to setup a vpn tunnel to a Juniper device.

The peer needs to have main mode in order for phase 1 to connect.

My questions:

1. How do I configure main mode and aggresive mode?

2. What is the default behavior for the VPN Lan2Lan tunnel.

Thanks for the help.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Christopher Adlam
Level 1
Level 1
In response to mohankumarm

‎06-13-2011 07:23 AM

The command to disable aggressive mode is:

crypto isakmp aggressive-mode disable

OP:

What Juniper device are you connecting to? An SSG?

View solution in original post

0 Helpful
2 Replies 2

Go to solution
mohankumarm
Level 1
Level 1

‎06-10-2011 07:05 PM

Hi there,

1. The default behaviour for the VPN L2L tunnel is main mode and aggresive mode is used for EZVPN client type of implementations.

2. To turn off aggresive mode on IOS router, i think you will have do a ' no crypto isakmp -----' if i memory is right:)

There is a detailed explanation of the MM and aggresive setup in the CSC forum..have a look there..

Thanks.

0 Helpful

Go to solution
Christopher Adlam
Level 1
Level 1
In response to mohankumarm

‎06-13-2011 07:23 AM

The command to disable aggressive mode is:

crypto isakmp aggressive-mode disable

OP:

What Juniper device are you connecting to? An SSG?

0 Helpful
Customers Also Viewed These Support Documents