Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

IPsec L2L tunnel

 

 Hi..

 I have cisco ASA version 8.4,i am settingup a L2L IPSec tunnel with our client. Client too has ASA. I have disable AM mode on my end ASA.

Does AM need to be disable on client end ASA to  get the negotiation happen b/w ASAs and tunnel up and working.

Pls help.

 

2 REPLIES

Hello, I would say No just

Hello,

 

I would say No just make sure the client is using Main mode to connect :)

 

Regards

Looking for some Networking Assistance? Contact me directly at jcarvaja@laguiadelnetworking.com I will fix your problem ASAP. Cheers, Julio Carvajal Segura http://laguiadelnetworking.com
Silver

Main mode is the default

Main mode is the default selection on Cisco ASA.

By default on Cisco ASA, IKE runs in aggressive mode for only remote-access VPNs using preshared-key authentication, and this is a requirement for the connection to be successful due to the identity-matching mechanism.

If no changes has been done on your client side then default selection for IKE negotiation will be Main mode.

19
Views
0
Helpful
2
Replies