| Author |
Need some help with ipsec
|
|
| bigjon 2004-03-23, 11:46 am |
| Been trying to test ipsec in my test environment and am having no success in being able to use preshared keys, some help would be appreciated thanks | |
| aznluvsmc 2004-03-23, 12:57 pm |
| Using a pre-shared key should be straight forward. You type in the same key on both computers and then they should be able to negotiate the SA.
Are you creating your own IPSec policy or editing one of the predefined ones? | |
| bigjon 2004-03-23, 1:00 pm |
| I have created new ones with new filters, sounds easy in theory until you try and do it in a lab I am having no luck, if you have a scenario or anything else I could try I would be much appreciative of it | |
| bigjon 2004-03-23, 1:14 pm |
| I am trying to filter all icmp traffic, the filter is all icmp traffic, the filter action is negotiate security and I am using medium security, the preshared key is abc123. I am exporting the policy and then importing it to the computer that I want to test this on all I get is a continuos negotiate security. Both polices on each computer is exactly the same | |
| aznluvsmc 2004-03-23, 2:51 pm |
| When you look at the properties of your IPSec policy you should have All ICMP Traffic and <Dynamic> listed under the IP Filter List column. The Authentication column should read Preshared key.
What does the Filter Action column state? | |
| curiousgeorge 2004-03-24, 1:18 pm |
| Did you remember to assign it on both computers?
You might have assigned it on one computer, both not both of them.
Hope that helps. | |
| bigjon 2004-03-24, 4:39 pm |
| I have it assigned on both computers only problem is really the security negotiations I can get all the other stuff to work but not that. I have it assigned on both computers thanks for the help though. I will keep on hitting my machine or brain until they work right. |
|
|
|