Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
692
Views
0
Helpful
1
Replies

Manual IPSec issue

andrew.ho
Level 1
Level 1

‎07-28-2004 06:46 PM - edited ‎02-21-2020 01:16 PM

Hi,

I am following the instructions in

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080093c26.shtml

to setup a manual IPSec tunnel between two routers without any success. I can see the interested traffic hits the match address in cryto map. However, no ipsec sa is formed. When I do a debug, I got the following error message:

IPSEC(ipsec_manual_keymgr): couldn't allocate inflow

Anybody can help? Thanks.

Andrew

Labels:
0 Helpful
1 Reply 1

Steve Fuller
Level 9
Level 9

‎08-02-2004 02:48 PM

Unless you have a very good reason to use manual keying I would suggest you use IKE for the key exchange.

Keys negotiated via IKE are changed (by default) every hour and are therefore much more secure than manual keys.

The document "Configuring IPSec Router-to-Router Hub and Spoke" (http://www.cisco.com/en/US/partner/tech/tk583/tk372/technologies_configuration_example09186a008009463b.shtml) shows how to use IKE with "pre-shared" keys.

Regards

0 Helpful
Customers Also Viewed These Support Documents