OK... I see the statement for the declaration of Encryption for Phase 2. It is clear in the Crypto Map section. Where in the config file is the Phase 1 encryption method defined for a given IPSec Tunnel?
From the ASA CLI you should be able to see all the phase 1 policies configured on the ASA with the command "show run crypto". They are at the very end.
Each of the policies have a priority number in which order they are checked when a VPN connection is being formed.
To my understanding none of them are locked to a certain VPN connection on your ASA. They are gone through with the other VPN device/client in the Phase1 negotiations until they find a policy match that both devices have.
In my 8.4(3) ASA I for example have the policies like this
crypto ikev1 policy 30
crypto ikev1 policy 60
For the older software the format might be different.
Eric asked his question without telling us what platform he is asking about. Jouni has given a nice explanation for the ASA. If Eric was asking about an IOS device then the answer is that the phase 1 encryption is specified in the transform set.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :