Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1739
Views
5
Helpful
4
Replies

Disable Aggressive Mode on a PIX running 6.3

Go to solution
john.wittenberg
Level 1
Level 1

‎06-04-2008 10:09 AM - edited ‎03-11-2019 05:55 AM

How can I turn off Aggressive mode on a PIX 501 running 6.3?

This is a security issue for our PCI compliance.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Syed Iftekhar Ahmed
Level 8
Level 8

‎06-04-2008 11:12 AM

You cannot disable aggressive mode in 6.3 code. PIX would try to initiate the connection first on Main mode and if it fails would try

aggressive mode.

Syed Iftekhar Ahmed

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Syed Iftekhar Ahmed
Level 8
Level 8

‎06-04-2008 11:12 AM

You cannot disable aggressive mode in 6.3 code. PIX would try to initiate the connection first on Main mode and if it fails would try

aggressive mode.

Syed Iftekhar Ahmed

0 Helpful

Go to solution
john.wittenberg
Level 1
Level 1
In response to Syed Iftekhar Ahmed

‎06-04-2008 11:19 AM

Thank you for this information. I was afraid of that. Again thank you for your reply

John

0 Helpful

Go to solution
grobinson23
Level 1
Level 1
In response to Syed Iftekhar Ahmed

‎11-13-2008 08:25 AM

In what version of the code can the disabling of aggressive mode be done?

Thanks!

0 Helpful

Go to solution
ajagadee
Cisco Employee
Cisco Employee
In response to grobinson23

‎11-13-2008 12:01 PM

Hi,

7.0 and higher.

"isakmp am-disable"

http://www.cisco.com/en/US/docs/security/asa/asa70/command/reference/gl.html

Regards,

Arul

*Pls rate if it helps*

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card