Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)

Does Cisco VPN client support DES for remote VPN to a PIX 501 ?

Hi netpros,

I am trying to set up a remote vpn using Cisco VPN client 5.0 (I have also tried version 4.6) and a PIX501 with DES support ONLY. By looking at the logs on the PIX, I can see the client attempting to negotiate phase 1. It only sends 9 attempts (neither of them using DES as encryption) and it stops there and the VPN can't be completed. I expected the vpn client to keep on trying until a match is found. Are there any limitations on this set up.

Your comments are much appreciated !!!

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Does Cisco VPN client support DES for remote VPN to a PIX 50

Hello Fernando,

Interesting Observation. Are you using DES with SHA or DES with MD5. From what I can see in the below URL, DES with MD5 is a supported IKE Proposal.

http://www.cisco.com/en/US/docs/security/vpn_client/cisco_vpn_client/vpn_client46/administration/guide/vcAch8.html#wp1157757

Regards,

Arul

*Pls rate if it helps*

2 REPLIES
Cisco Employee

Re: Does Cisco VPN client support DES for remote VPN to a PIX 50

Hello Fernando,

Interesting Observation. Are you using DES with SHA or DES with MD5. From what I can see in the below URL, DES with MD5 is a supported IKE Proposal.

http://www.cisco.com/en/US/docs/security/vpn_client/cisco_vpn_client/vpn_client46/administration/guide/vcAch8.html#wp1157757

Regards,

Arul

*Pls rate if it helps*

Re: Does Cisco VPN client support DES for remote VPN to a PIX 50

Hi ..

Thanks for the tip .. indeed MD5 worked OK.

Cheers,

404
Views
0
Helpful
2
Replies
CreatePlease to create content