[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Windows 2000 and Cicsco router interoperability
Windows 2000 IPSec client only works in transport mode and uses certificates
(although it will let you configure pre-shared secret but client will ignore
pre-shared and look for cert. when you will try to fire up the client) in
client-to-gateway scenario. Tunnel mode is only supported when win 2000 is
configured to work as a gateway and not as a client.
Rgds,
Salman
-----Original Message-----
From: Patrick Ethier [mailto:pat@secureops.com]
Sent: Monday, May 08, 2000 9:07 AM
To: 'Andrea Schiavoni'; ipsec@lists.tislabs.com
Subject: RE: Windows 2000 and Cicsco router interoperability
It was brought to my attention about a month ago that W2K does not support
tunneling mode. I can't confirm whether that is true or not because I
haven't bothered to verify it. Try changing from tunnel to transport in your
quick mode and see if it works. Let me know, I'm curious to find out if this
is the case.
Regards,
________________
Patrick Ethier
Product Development
SecureOps Inc.
patrick@secureops.com
(514) 982-0678 x 106
(514) 982-0362 - fax
-----Original Message-----
From: Andrea Schiavoni [mailto:s81331@cclinf.polito.it]
Sent: Saturday, May 06, 2000 7:57 AM
To: ipsec@lists.tislabs.com
Subject: Windows 2000 and Cicsco router interoperability
Has anybody tried ISAKMP between W2000 and Cisco routers?
I have tried with pre-shared secret authentication method:
des-sha1 and des-md5 in main mode
des-esp , des-sha1 , des-md5 and ah in quick mode
They successfully worked in main mode, but they couldn't setup the IPsec SA
in quick mode.
Thanks
Andrea Schiavoni