Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
466
Views
0
Helpful
2
Replies

isakmp initiation

Go to solution
yuhuiyao
Level 1
Level 1

‎12-11-2008 11:23 AM

When configuring isakmp on routers to set up a ipsec tunnel, which side will initiate the session for udp 500? Or both sides will attempt to initiate the session at the same time?

Thanks,

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
mike_guy29
Level 1
Level 1

‎12-11-2008 02:06 PM

Hi,

It could be either router that initiates the ISAKMP exchange. It will depend which router sees interesting traffic first. E.g. if you had LAN-A behind Router A, and LAN-B behind Router B and someone from LAN-A tried to ping a machine in LAN-B, Router A would initiate the ISAKMP exchange. Hope that answers your question

Thanks

View solution in original post

0 Helpful
2 Replies 2

Go to solution
mike_guy29
Level 1
Level 1

‎12-11-2008 02:06 PM

Hi,

It could be either router that initiates the ISAKMP exchange. It will depend which router sees interesting traffic first. E.g. if you had LAN-A behind Router A, and LAN-B behind Router B and someone from LAN-A tried to ping a machine in LAN-B, Router A would initiate the ISAKMP exchange. Hope that answers your question

Thanks

0 Helpful

Go to solution
mike_guy29
Level 1
Level 1

‎12-11-2008 02:08 PM

Just to clarify on my post, that was under the assumption that we are talking about a LAN to LAN VPN connection as opposed to a Remote Access VPN using a client etc.

Thanks

0 Helpful
Customers Also Viewed These Support Documents