Home > Archive > alt.certification.cisco > September 2003 > VPN question





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author VPN question
Cable606

2003-09-02, 11:27 am

Hi,

'just working VPN on PIX, I have the following (possible dumb) question:

To define a preshared-key VPN tunnel, one should enter (considering
preshared key to be "strong_key" and remote peer's IP to be 200.200.200.200)
on Phase I definition:

isakmp key strong_key address 200.200.200.200

then later on, on Phase II definition:

crypto map the_map_name the_seq_nbr set peer 200.200.200.200

I did it on my PIX config, and it works fine (with a different IP, key,
etc...); my point is not to make work my config, but rather to understand
what I'm doing.

My questions are:
Why should one input the peer's IP twice ? (or more basically, when would
the remote's IP be needed on Phase II ?)
What did I miss to understand ?

Thanks in advance,

NB


Sponsored Links





Free Braindumps | MCSE braindumps software forum

Copyright 2003 - 2008 examnotes.net