06-09-2009 05:09 AM - edited 02-21-2020 04:15 PM
Hi all,
From this following text,
"Peers need to negotiate a common ISAKMP policy in order to establish an IPsec peer relationship. So depending on the devices you expect to peer with, you may need multiple ISAKMP policies. Each ISAKMP policy is assigned a unique priority number between 1 and 10,000.
"
Question_1: Is it so that each policy would be towards one peer? Or what is the policy about?
Question_2: What is the role of the priority number?
Thanks a lot.
Kind regards.
06-09-2009 06:18 AM
The ISAKMP policies are not specific to a peer. They are configured globally and identify what phase 1 attributes the security device supports. The priority number is used to uniquely identify each respective ISAKMP policy.
06-09-2009 06:53 AM
Hello!
Thanks for that reply. Further question: On one gateway, only one ISAKMP policy is supported right? Or more? What is the relation between the ISAKMP policy, peer and the priority?
Sorry, but I am still a bit confused.
Thanks again.
Kind regards.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide