Suppose your security policy dictates that you use preshared keys for authentication and you issue the following command: Router(config-isakmp)# authentication pre-share You must configure a preshared key. The command syntax to configure a preshared key is Router(config)# crypto isakmp key keystring address remote-peer-address Router(config)# crypto isakmp key keystring hostname remote-peer-hostname Make sure you use the same router identity as you did with the command crypto isakmp identity . The keystring can be up to 128 bytes and can consist of alphanumeric characters . If your remote IPSec peer has already been configured with a preshared key of CiscO_123! and the peer will be using its hostname to authenticate, you issue the following command: Router(config)# crypto isakmp key CiscO_123! hostname boise.que.com
|