Which configuration should you verify?

When troubleshooting site-to-site IPsec VPN on Cisco routers, you see this console message:

%CRYPTO-6-IKMP_SA_NOT_OFFERED: Remote peer %15i responded with attribute [chars] not offered or changed

Which configuration should you verify?

When troubleshooting site-to-site IPsec VPN on Cisco routers, you see this console message:

%CRYPTO-6-IKMP_SA_NOT_OFFERED: Remote peer %15i responded with attribute [chars] not offered or changed

Which configuration should you verify?

A.
the crypto ACL

B.
the crypto map

C.
the IPsec transform set

D.
the ISAKMP policies

E.
the pre-shared key

F.
the DH group



Leave a Reply 0

Your email address will not be published. Required fields are marked *