Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

aggressive mode v's main mode

I'm just trying to seek some clarification on PIX and the two Phase 1 modes. My understanding is that with version 7 aggressive mode is default and can be turned off with "isakmp am-disable".

What is the case with previous versions?

Is main mode default? And is there a way to change this or will the PIX just accept whatever mode it is presented with?

Thank,

Russell.

1 REPLY
Gold

Re: aggressive mode v's main mode

I think previous version of PIX OS (before 7.0) has default configuration main mode and only with dymanic crypto maps you can use aggressive mode

Try following doc:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008052c9d4.shtml#t4

Its about PIX and Sonic firewall VPN configuration but there are examples of aggressive and main mode configs

M.

Rate useful posts

145
Views
0
Helpful
1
Replies
CreatePlease to create content