Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
202
Views
0
Helpful
1
Replies

How does the "ISAKMP POLICY" work in a PIX client VPN configuration

ryan.bollman
Level 1
Level 1

‎09-16-2002 07:19 AM - edited ‎02-21-2020 12:03 PM

I have a configuration question in regards to "isakmp policy" configuration.

I am looking through the sample configurations on CCO, and seeing that many of the configurations have multiple policies for users with client 3.0, 1.0, and PIX to PIX scenerios.

My question is, how do you map the appropriate policy to the appropriate VPNGROUP? For example, let's say I have a set of users running client version 1.0. I will be having them use VPN group VER1. With the VPN group, i would like to map the appropriate policy to set the hash, encryption, etc. How do I ensure they are mapped to the corrent isakmp policy?

To put it simply, I don't know how the "isakmp policy" works. I know that there are priorities, but I am not sure when the priorities are "compared" for matches. I am looking for a document that could explain this, or just an explanation from a tech would be great.

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

beth-martin
Level 5
Level 5

‎09-20-2002 11:50 AM

The following link should be what you are looking for. http://www.cisco.com/warp/public/105/IPSECpart4.html

0 Helpful
Customers Also Viewed These Support Documents