02-01-2007 09:28 AM - edited 03-11-2019 02:27 AM
Hi,
I have two VPN's running which both use des-md5 encryption. I set up a new vpn which i want to use 3des-sha. After setting this up i noticed that when I connected to the new VPN I was only getting des-md5. Is there anyway i can specify this without affecting the other VPNs?
I have posted part of the config.
Regards
J Mac
02-01-2007 10:14 AM
hello,
after looking at your config, can you tell me that when you are initiating the vpn tunnl to this second peer, where do you connect to. can you paste the output of
"sh crypto isakmp sa"
because i think your crypto map is only complete for one peer, your have multiple lines missing in your config, you have to define separatly the "set peer", "transform-set" and "match address" which will match this second vpn access-list for interesting traffic.
02-02-2007 02:52 AM
Hi,
thanks for your response here is the "sh crypto isakmp sa"
Active SA: 2
Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)
Total IKE SA: 2
1 IKE Peer: 213.xxx.xxx.xxx
Type : L2L Role : initiator
Rekey : no State : MM_ACTIVE
2 IKE Peer: 82.xxx.xxx.xxx
Type : user Role : responder
Rekey : no State : AM_ACTIVE
Thanks
J mac
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide