OK, I reread some materials, and rechecked my sources. ( Now I have yet another gripe about config maker. Not that the result is "wrong" but that it could be done a bit more clearly ) this time let's try it following the guidelines in that book I've been waxing praise upon of late. My ipsec router ip address is 64.220.150.9 Using isakmp for the key exchange Hash md5 Preshared key is cisco1 ( that's a one on the end ) Using esp des but NOT ah If you want to try out, I will need your side ip address to enter into my peer commands. I already have peers for two of you, who should know who you are. Ip starting with 64.something and 24.something Following is my side router config. hostname Router_1 ! username ipsectest nopassword ! no ip domain-lookup ! crypto isakmp policy 1 hash md5 authentication pre-share crypto isakmp key cisco1 address YOUR IP ADDRESS HERE! crypto isakmp key cisco1 address RESERVED FOR YOU! ! crypto ipsec transform-set encrypt esp-des esp-md5-hmac ! crypto map ipsectest local-address Ethernet0 crypto map ipsectest 10 ipsec-isakmp set peer THIS COULD BE YOU! set peer IF YOU LIVED HERE YOU'D BE HOME NOW set transform-set encrypt match address 100 ! ! ! ! interface Ethernet0 ip address 64.220.150.9 255.255.255.0 no ip route-cache no ip mroute-cache crypto map ipsectest ! interface Serial0 no ip address no ip route-cache no ip mroute-cache shutdown no fair-queue ! interface Serial1 no ip address no ip route-cache no ip mroute-cache shutdown ! ip classless ip route 0.0.0.0 0.0.0.0 Ethernet0 no ip http server ! access-list 100 permit ip any any log Router_1# With any luck I will be awake and on line beginning 6:00 a.m. California time., and better yet - on the chat site at http://www.allnetllc.net/chat/ciscochat.htm Chuck Please check out my new footers for a new age 1) Altruism http://www.thehungersite.com/cgi-bin/WebObjects/HungerSite Please help feed hungry people worldwide. A few seconds a day can make a difference to many people 2) Shameless Hucksterism www.certificationzone.com An excellent study focal point for all levels of certification, as well as the attainment of internetworking expertise. Use my name when you register. You get good study material and I get extra time ___________________________________ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
