cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
924
Views
0
Helpful
3
Replies

IPSEC and AnyConnect error

Luca Pecchiari
Beginner
Beginner

Hello Guys,

 

i moved from sslvpn to ip sec vpn.

 

I verified the connection with Cisco Vpn client, but i have a question.

 

It is possible to connect with any connect to IPSEC? when i try with AnyConnect app for i ios i get an error: the cryptografic algorithm requested by the gateway are not supported by the AnyConnect APP.

 

Please can you suggest me what i have to change?

 

thank you

 

!
aaa authentication login default local aaa authentication login userlist local aaa authentication ppp default local aaa authorization exec default local aaa authorization network default local aaa authorization network grouplist local crypto isakmp policy 10 encr aes 256 authentication pre-share group 5 ! crypto isakmp policy 20 encr aes authentication pre-share group 2 ! crypto isakmp client configuration group -group- key password domain internal pool VPN-POOL acl 182 ! crypto isakmp profile ip--group- match identity group -group- client authentication list userlist isakmp authorization list grouplist client configuration address respond virtual-template 2 ! crypto ipsec transform-set tr-3des-md5 esp-3des esp-md5-hmac mode tunnel crypto ipsec transform-set tr-3des-sha esp-3des esp-sha-hmac mode tunnel crypto ipsec transform-set tr-aes-sha esp-aes esp-sha-hmac mode tunnel ! crypto ipsec profile ip--group- set transform-set tr-aes-sha set isakmp-profile ip--group- interface Virtual-Template2 type tunnel ip unnumbered Dialer0 tunnel source Dialer0 tunnel mode ipsec ipv4 tunnel protection ipsec profile ip--group- access-list 182 remark # VPN Users # access-list 182 permit ip 192.168.1.0 0.0.0.255 host 192.168.69.10 access-list 182 permit ip 192.168.1.0 0.0.0.255 host 192.168.69.11 access-list 182 permit ip 192.168.1.0 0.0.0.255 host 192.168.69.12

 

 

 

 

 

1 Accepted Solution

Accepted Solutions

Marvin Rhoads
VIP Community Legend VIP Community Legend
VIP Community Legend
3 Replies 3

marce1000
VIP Mentor VIP Mentor
VIP Mentor

 

 - Possibly obsolete ciphers being offered , you may find this thread informational :

           https://community.cisco.com/t5/vpn/anyconnect-error-cryptographic-algorithms-required-by-the-secure/td-p/4141765

 M.