Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ISAKMP: Enabled or disabled by default

I have been configuring PIX firewalls now for a few years.

One of the things that I have to perform to bring up an ISAKMP tunnel is to enter the command "isakmp enable outside".

I keep getting this exam question asking about ISAKMP being enabled by default on all interfaces.

My gut answer based on experience is that "ISAKMP is not enabled by default" because if it were, I would not have to type "isakmp enable outside";it would already be enabled.

But the exam prep courses all say that the answer is: IT IS ENABLED BY DEFAULT on all interfaces/

Is this correct? Is there any documentation ( I have searched but cannot find what I need to answer the question).

Thank You.

1 REPLY

Re: ISAKMP: Enabled or disabled by default

Hi

I feel you are rite in pointing out that its not enabled by default.i did try for the same and got the following clis are there in pix by default..

Defaults

By default, NAT traversal (isakmp nat-traversal) is disabled.

The default ISAKMP identity is isakmp identity hostname.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/gl.htm#wp1027312

regds

104
Views
0
Helpful
1
Replies