Remote Access VPN - Cisco 1710

Discussion in 'Cisco' started by Rafael, Dec 11, 2003.

  1. Rafael

    Rafael Guest


    Can anyone direct me to a link that describes how to terminate a
    remote access VPN connection on a Cisco 1710 Security Router. Example
    configs would be great.


    Rafael, Dec 11, 2003
    1. Advertisements

  2. Rafael,

    This works fine with the Cisco VPN Client (with split tunnelling).

    This is part of the config (I think I have included all the important bits).

    aaa new-model
    aaa authorization network xxx-vpn-clientgroup local
    aaa session-id common
    username user1 password xxxxxxxxxx
    crypto isakmp policy 1
    encr 3des
    authentication pre-share
    group 2
    crypto isakmp client configuration address-pool local dynpool
    crypto isakmp client configuration group xxx-vpn-clientgroup
    key vpnkey
    pool dynpool
    acl 111
    crypto ipsec transform-set transform-1 esp-3des esp-sha-hmac
    crypto dynamic-map dynmap 1
    set transform-set transform-1
    crypto map dynmap isakmp authorization list xxx-vpn-clientgroup
    crypto map dynmap client configuration address respond
    crypto map dynmap 1 ipsec-isakmp dynamic dynmap
    interface Ethernet0
    ip address nnn.nnn.nnn.nnn
    no cdp enable
    crypto map dynmap
    interface FastEthernet0
    ip address nnn.nnn.nnn.nnn
    no cdp enable
    ip local pool dynpool
    ip default-gateway nnn.nnn.nnn.nnn
    ip route nnn.nnn.nnn.nnn
    access-list 111 permit ip nnn.nnn.0.0
    access-list 111 permit ip
    Pete Mainwaring, Dec 11, 2003
    1. Advertisements

  3. Rafael

    Rafael Guest


    Thanks so much for your help - invaluable!!

    Rafael, Dec 12, 2003
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.