Hi
I would really recommend to go on 12.1.3ta for IPSEc, version
12.07any has the problem of asimmetric SA after some time has pass,
(not only when the session expires).
It will work for some cases, but for high traffic, forget it.
We are using 3640 + 12.1.3ta, and it is working quite well...
Of course, 12.1 will add a lot of problems on voice, routing, etc, etc
:-) you will have to live with it....
Regards.
Ibrahim wrote:
>
> Hi group,
>
> We installed tunnel & ipsec (using GRE, isakmp-preshare, cisco 3640 & IOS
> 12.0.7XK1) between 2 routers. Then tunnel & ipsec can work, but the problem
> is after the session expired, the ipsec can't establish anymore, and we've
> to run this command "clear crypto sa" manually on both routers, and the
> session can be established.
>
> I heard IOS 12.0.7XK1 has a problem in IPSEC, but I can't upgrade our 3640,
> every time I upgrade to any 12.1 version, All the interfaces disappear in
> configuration.
>
> TIA,
> Ibam
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _________________________________
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
--
---
Javier Contreras Albesa
Standard Trainer
PRO IN Training S.L.
PROfessional Information Networks
World Trade Center, Moll de Barcelona S/N
Edif Sur, Planta 4
Phone: (+34) 93-5088850 E-mail:
[EMAIL PROTECTED]
Fax: (+34) 93-5088860 Internet: http:// www.proin.com
SHAPING THE FUTURE - BE PART OF IT!
**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
