Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Concerned - Win2K to PIX tunnel is up without authentication

I successfully built a Gateway Tunnel between a Win2K machine to a PIX Ver6.1.1

Sounds great except that my PIX is configured to authenticate to my RADIUS server and the Win2K box was not asked for authentication. This concerns me...

I have a number of Tunnels built on this PIX - some are peer to peer where I set:

isakmp key ** address X.X.X.X ~~~ no-xauth no-config

Others are for Clients:

isakmp key ** address 0.0.0.0

and I leave out the no-xauth, and all clients have to authenticate and this works all the time.

But for some reason this Win2K machine that is set up as a gateway is using the key associated with an unknown address - but is not authenticating.

Could this be a bug, a feature, or maybe an oversight.

  • Other Security Subjects
1 REPLY
New Member

Re: Concerned - Win2K to PIX tunnel is up without authentication

I just configured a PIX to PIX tunnel and was able to accomplish the same thing. Xauth is being bypassed. This is concerning me...

76
Views
0
Helpful
1
Replies
This widget could not be displayed.