• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 338
  • Last Modified:

ISAKMP Policy question

I have a firewall that I need to have multiple site to site VPN's on.  Two of the VPN's have different ISAKMP policy's.    The policy number is an assignment of priority not of which one to use with each VPN.  Is it possible to have several VPN's with different ISAKMP policy's on the same firewall?  If so how does the firewall pick which one to use?  Does it just go down the list till it gets one that works?

I am using an ASA 5510 in this instance.
1 Solution
You are correct. The firewall will run down the list starting with the lowest order number and continue until it finds a match or reaches the end.
So yes you can have multiple policies on the same device.
ericluomaAuthor Commented:

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now