Here is an example showing the quickest way to enable a
VPN SERVER on router Cisco 17xx / 18xx / ...
just check the ***STARRED*** values & replace it with yours;
this script uses a
LAN on 192.168.10.x and
VPN client on 192.168.11.x
!
aaa new-model
!
aaa authentication login default local
aaa authentication login sdm_vpn_xauth_ml_1 local
aaa authorization exec default local
aaa authorization network sdm_vpn_group_ml_1 local
!
aaa session-id common
!
resource policy
!
username ***USER1*** privilege 0 password 0 ***PASSWORD***
username ***USER2*** privilege 0 password 0 ***PASSWORD***
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
crypto isakmp xauth timeout 15
!
crypto isakmp client configuration group ***MY_GROUP***
key ***MY_GROUP_KEY***
pool SDM_POOL_1
save-password
include-local-lan
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
!
crypto dynamic-map SDM_DYNMAP_1 1
set transform-set ESP-3DES-SHA
reverse-route
!
crypto map SDM_CMAP_1 client authentication list sdm_vpn_xauth_ml_1
crypto map SDM_CMAP_1 isakmp authorization list sdm_vpn_group_ml_1
crypto map SDM_CMAP_1 client configuration address respond
crypto map SDM_CMAP_1 65535 ipsec-isakmp dynamic SDM_DYNMAP_1
!
interface Ethernet0
crypto map SDM_CMAP_1
!
ip local pool SDM_POOL_1 192.168.11.1 192.168.11.100
ip classes
!
ip nat inside source route-map SDM_RMAP_1 interface FastEthernet0 overload
!
access-list 100 permit ip 192.168.10.0 0.0.0.255 any
route-map SDM_RMAP_1 permit 1
match ip address 100
!
end
1 comment:
This is just GREAT! The set up was sooo easy, as soon as the payment was ok and I got my greeting e-mail sent to me I was up and downloading news after less than 2 minutes, the set-up video for mac was perfect! I signed up for 3 months 45USD, def. worth it! Thank you strong vpn!
Post a Comment