Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
2
Replies

isakmp identify hostname ??

skleber
Level 1
Level 1

‎02-18-2004 02:33 AM - edited ‎03-09-2019 06:27 AM

Hi,

i have a problem to put the line "isakmp identify hostmane" into a pix config. The pix accespt the command, but it isn´t in the config.

6.3.3 with pix 515

crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac

crypto map outside_map 10 ipsec-isakmp

crypto map outside_map 10 match address outside_cryptomap_10

crypto map outside_map 10 set peer x.x.x.x

crypto map outside_map 10 set transform-set ESP-3DES-MD5

crypto map outside_map 10 set security-association lifetime seconds 360 kilobytes 1000000

crypto map outside_map interface outside

isakmp enable outside

isakmp key ******** address x.x.x.x netmask 255.255.255.255

isakmp policy 10 authentication pre-share

isakmp policy 10 encryption 3des

isakmp policy 10 hash md5

isakmp policy 10 group 2

isakmp policy 10 lifetime 10800

Labels:
0 Helpful
2 Replies 2

mostiguy
Level 6
Level 6

‎02-18-2004 04:52 AM

that is because that is the default for the isakmp identity command. default settings are not shown in the config because the config does not change them

0 Helpful

skleber
Level 1
Level 1
In response to mostiguy

‎02-18-2004 05:14 AM

Hi,

ok, that can be true. But the pix try to identify once with the address and once with the hostname.

I hava a FSecure on the other side whitch only identify with the hostname.

Regards, Sebastian

0 Helpful
Customers Also Viewed These Support Documents