[prev in list] [next in list] [prev in thread] [next in thread] 

List:       firewall-wizards
Subject:    [fw-wiz] cisco pix and sonicwall pro vpn
From:       "Daniel Handley" <daniel () homepage ! net>
Date:       2001-02-23 7:53:21
[Download RAW message or body]

i have a cisco pix 515 5.3(1) and a sonicwall pro that i need to create a
vpn between.
the pix is already part of a vpn with four sites using ipsec and IKE isakmp
method. the sonicwall has firmware version 3 that doesn't support IKE so i
ned to set this manually.
i have followed what i beleved to be the correct insturction from the
manual, and found an article recomending trying the sp1 codes in decimal
rather than hex, but to no avail.
here is what i have done so far, rip it to pieces please.

access-list 100 permit ip 172.16.1.0 255.255.255.0 172.16.0.0 255.255.255.0
access-list 200 permit ip 172.16.1.0 255.255.255.0 172.16.0.0 255.255.255.0
crypto ipsec transform-set spnc-spweb esp-des esp-md5-hmac
crypto map map2 200 ipsec-manual
crypto map map2 200 match address 200
crypto map map2 200 set peer x.x.x.x
crypto map map2 200 set transform-set spnc-spweb
crypto map map2 200 set session-key inbound ah 201 x
crypto map map2 200 set session-key outbound ah 202 x
crypto map map2 200 set session-key inbound esp 201 cipher x authenticator x
crypto map map2 200 set session-key outbound esp 202 cipher x authenticator
x
crypto map map2 interface outside

does anyone have any suggestions.


Daniel Handley
Infrastructure Manager, HomePage Ltd
Tel: 020 8880 4570 Fax: 020 8880 4328
mailto:daniel@homepage.net http://www.homepage.net

_______________________________________________
firewall-wizards mailing list
firewall-wizards@nfr.com
http://www.nfr.com/mailman/listinfo/firewall-wizards

[prev in list] [next in list] [prev in thread] [next in thread]