Remote Access VPN - Cisco 1710

Discussion in 'Cisco' started by Rafael, Dec 11, 2003.

  1. Rafael

    Rafael Guest

    Hi,

    Can anyone direct me to a link that describes how to terminate a
    remote access VPN connection on a Cisco 1710 Security Router. Example
    configs would be great.

    Thanks

    Rafael.
     
    Rafael, Dec 11, 2003
    #1

    1. Advertisements

  2. Rafael

    Pete Mainwaring Guest

    Rafael,

    This works fine with the Cisco VPN Client (with split tunnelling).

    This is part of the config (I think I have included all the important bits).

    aaa new-model
    !
    aaa authorization network xxx-vpn-clientgroup local
    aaa session-id common
    !
    username user1 password xxxxxxxxxx
    !
    crypto isakmp policy 1
    encr 3des
    authentication pre-share
    group 2
    crypto isakmp client configuration address-pool local dynpool
    !
    crypto isakmp client configuration group xxx-vpn-clientgroup
    key vpnkey
    pool dynpool
    acl 111
    !
    crypto ipsec transform-set transform-1 esp-3des esp-sha-hmac
    !
    crypto dynamic-map dynmap 1
    set transform-set transform-1
    !
    crypto map dynmap isakmp authorization list xxx-vpn-clientgroup
    crypto map dynmap client configuration address respond
    crypto map dynmap 1 ipsec-isakmp dynamic dynmap
    !
    interface Ethernet0
    ip address nnn.nnn.nnn.nnn 255.255.255.240
    no cdp enable
    crypto map dynmap
    !
    interface FastEthernet0
    ip address nnn.nnn.nnn.nnn 255.255.255.0
    no cdp enable
    !
    ip local pool dynpool 10.96.55.129 10.96.55.190
    ip default-gateway nnn.nnn.nnn.nnn
    ip route 0.0.0.0 0.0.0.0 nnn.nnn.nnn.nnn
    !
    access-list 111 permit ip nnn.nnn.0.0 0.0.255.255 10.96.55.128 0.0.0.63
    access-list 111 permit ip 10.0.0.0 0.255.255.255 10.96.55.128 0.0.0.63
     
    Pete Mainwaring, Dec 11, 2003
    #2

    1. Advertisements

  3. Rafael

    Rafael Guest


    Pete,

    Thanks so much for your help - invaluable!!

    Rafael
     
    Rafael, Dec 12, 2003
    #3

    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Similar Threads

  1. VPN Problems 1710 to 1710 via ADSL

  2. Remote access fun with Cisco 837 and locally auth'd Cisco VPN client

  3. Cisco 506e - remote-access vpn, split tunnel, client has no internet access.

  4. Question on Remote Access VPN Access Control on IOS

  5. VPN site to site & Remote access VPN ( vpn client) over the same interface

  6. Trying to access the PDM of a Cisco pix over a Remote Access VPN withCisco VPN Client

  7. Issue with cisco vpn client in accessing remote vpn access

Loading...