05-08-2007 05:12 PM - edited 02-21-2020 03:02 PM
I am unable to get my Cisco VPN client to successfully negotiate with my ASA 5500. I have gone thru several configs and have had no luck. I am posting my current router config and debug info in hopes that someone sees something obvious. It is not passing the initial phase.
Thank you very much for your assistance.
Solved! Go to Solution.
05-09-2007 05:37 PM
Still having trouble, try adding..
isakmp policy 65535 authentication pre-share
isakmp policy 65535 encryption 3des
isakmp policy 65535 hash sha
isakmp policy 65535 group 2
isakmp policy 65535 lifetime 86400
05-09-2007 05:37 PM
Still having trouble, try adding..
isakmp policy 65535 authentication pre-share
isakmp policy 65535 encryption 3des
isakmp policy 65535 hash sha
isakmp policy 65535 group 2
isakmp policy 65535 lifetime 86400
05-10-2007 10:06 AM
This resolved my issue. Thanks!
05-10-2007 02:16 AM
You could try to change the transform-set to something like 3DES or AES instead of using DES. Rebooting the device after the initial VPN configuration is always a good idea.
I once had a strange problem with a ASA using a DES transform-set, it was solved by using a higher protocol for my transform-set.
Regards,
Michael
05-10-2007 09:16 AM
I actually had it at AES-256 originally and when that didn't work I brought it down to DES. Will put it back on AES-256 and reboot it later today to see what happens.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide