×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Two ASA IPVPN tunnel ikev1 and ikev2

Answered Question
Dec 9th, 2013
User Badges:

Dear


I have using 2 ASA 5510 to make IPVPN tunnel.  From my experience.  I tried to used ONLY ikev1 are working fine. or I tried to used ONLY ikev2 are working fine for the tunnel connection.  So, any suggestion for me to keep using ikev1 or need to change to ikev2 instead?

Correct Answer by Julio Carvajal about 3 years 8 months ago

Hello Alan,


Yes, you can still do it.


I mean I recommend to start using IKEv2 as you have multiple benefits but it's not a MUST to do it. It will not be a secuarity breach to still use Ikev1.


And for your other question, yes you can terminate both IKEv 1 and IKEv2.



Rate all of the helpful posts!!!

Regards,

Jcarvaja

Follow me on http://laguiadelnetworking.com

Correct Answer by Julio Carvajal about 3 years 8 months ago

Hello,

Not sure I understand your question.

Are u asking if u need to move to IKEV 2 or stay on 1???

If that s the question then are fine on v1. Of course as you are aware of there are several benefits over running Ikev2 but you could still run v1.


Sent from Cisco Technical Support Android App

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Correct Answer
Julio Carvajal Mon, 12/09/2013 - 19:18
User Badges:
  • Purple, 4500 points or more

Hello,

Not sure I understand your question.

Are u asking if u need to move to IKEV 2 or stay on 1???

If that s the question then are fine on v1. Of course as you are aware of there are several benefits over running Ikev2 but you could still run v1.


Sent from Cisco Technical Support Android App

alan-wong Mon, 12/09/2013 - 19:28
User Badges:

Hi, I can make connection for both either ikev1 or ikev2.  I am not sure is that any security reason need to change to ikev2.  Thank you for your answer.  I will keep in ikev1 as you said it is fine on v1.  thank you very much.

Correct Answer
Julio Carvajal Mon, 12/09/2013 - 19:31
User Badges:
  • Purple, 4500 points or more

Hello Alan,


Yes, you can still do it.


I mean I recommend to start using IKEv2 as you have multiple benefits but it's not a MUST to do it. It will not be a secuarity breach to still use Ikev1.


And for your other question, yes you can terminate both IKEv 1 and IKEv2.



Rate all of the helpful posts!!!

Regards,

Jcarvaja

Follow me on http://laguiadelnetworking.com

alan-wong Mon, 12/09/2013 - 19:35
User Badges:

HI Jcarvaja


May I know the multiple benefits include any speed increase from opeartion prespective ?

Julio Carvajal Mon, 12/09/2013 - 19:37
User Badges:
  • Purple, 4500 points or more

Hello,


That's one of the most important actually.


I will provide you a great post about it  where Cisco talks about Why should we all migrate


http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080bca116.shtml


Let me know if u have any other question bud


Rate all of the helpful posts!!!

Regards,

Jcarvaja

Follow me on http://laguiadelnetworking.com

Actions

This Discussion

Related Content