WERAracer
asked on
IPSEC question (making us the initiator, not responder)
We have an issue with one of our IPSEC sites. If I want a tunnel up, I cannot get it up from the IPSEC site. It has to be intiaited from the head end. Is there anyway to configure the VPN so that either side can bring up the tunnel? This is a Cisco IPSEC tunnel between two ASAs
crypto map mymap 37 match address ipsec
crypto map mymap 37 set peer <ip hidden>
crypto map mymap 37 set transform-set aes128
crypto map mymap interface outside
crypto isakmp enable outside
crypto isakmp policy 50
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400
crypto map mymap 37 match address ipsec
crypto map mymap 37 set peer <ip hidden>
crypto map mymap 37 set transform-set aes128
crypto map mymap interface outside
crypto isakmp enable outside
crypto isakmp policy 50
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
bug in 8.05!
ASKER