FlexVPN Smart Defaults Tidbit

FlexVPN is built on using IKEv2. The smart defaults is a feature that aides in simplifying FlexVPN configuration. You are able to customize smart defaults. However, it is not always necessarily best practice. To view the default values of IKEv2 Smart Defaults:


View IKEv2 default Proposal:

View IKEv2 default Authorization Policy:

View IKEv2 default Policy:

View default IPsec Transform Set:

Note: default tunnel mode is always transport when referencing Smart Defaults IPsec transform-set; All other transform-sets default to tunnel mode;


View default IPsec Profile:


0 comments

Recent Posts

See All

In this tidbit I want to cover some high level notes on general trustsec items as well as some good-to-knows. A brief overview of what trustsec is: TrustSec provides scalable access controls by uniqu

In this tidbit I will cover some ESA nice-to-know CLI commands & their purposes: > status = view counters/gauges; counters are a total of various events in the system; gauges show current utilization