12-11-2008 11:23 AM
When configuring isakmp on routers to set up a ipsec tunnel, which side will initiate the session for udp 500? Or both sides will attempt to initiate the session at the same time?
Thanks,
Solved! Go to Solution.
12-11-2008 02:06 PM
Hi,
It could be either router that initiates the ISAKMP exchange. It will depend which router sees interesting traffic first. E.g. if you had LAN-A behind Router A, and LAN-B behind Router B and someone from LAN-A tried to ping a machine in LAN-B, Router A would initiate the ISAKMP exchange. Hope that answers your question
Thanks
12-11-2008 02:06 PM
Hi,
It could be either router that initiates the ISAKMP exchange. It will depend which router sees interesting traffic first. E.g. if you had LAN-A behind Router A, and LAN-B behind Router B and someone from LAN-A tried to ping a machine in LAN-B, Router A would initiate the ISAKMP exchange. Hope that answers your question
Thanks
12-11-2008 02:08 PM
Just to clarify on my post, that was under the assumption that we are talking about a LAN to LAN VPN connection as opposed to a Remote Access VPN using a client etc.
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide