VPN-config P1i vs. Cisco-VPN
Januar 20, 2008 on 8:50 pm | In VPN, Sony Ericsson |Aufgrund der vielen Recherchen hier mal eine lauffähige VPN-Config für einen Cisco-Router in Verbindung mit dem P1i mit der Certicom-Software
version 12.3
!
aaa new-model
!
aaa authentication login default local
aaa authorization network default local
aaa session-id common
!
username vpn password 0 vpnpassword
!
crypto keyring p1ikeys
pre-shared-key address 0.0.0.0 0.0.0.0 key key432
!
crypto isakmp policy 1
encr aes 256
hash md5
authentication pre-share
group 2
lifetime 3600
!
crypto isakmp client configuration group p1igroup
key presharedkey432
dns
domain somewhere.local
pool vpn-ip
crypto isakmp profile p1i
match identity group p1igroup
client authentication list default
isakmp authorization list default
client configuration address respond
!
!
crypto ipsec transform-set p1iset esp-aes 256 esp-sha-hmac
!
crypto dynamic-map p1imap-dynamic 1
set transform-set p1iset
set isakmp-profile p1i
reverse-route
!
crypto map p1imap-dynamic 1 ipsec-isakmp dynamic p1imap-dynamic
!
interface Ethernet0
description internal net
ip address 192.168.2.254 255.255.255.0
!
interface FastEthernet0
description external net
ip address
crypto map p1imap-dynamic
!
ip local pool vpn-ip 192.168.2.10 192.168.2.20
Im Certicom-VPN Client muss dann zu einen der presharedkey432 und die Gruppe p1igroup eingetragen sein.
No Comments yet »
RSS-Feed für Kommentare zu diesem Beitrag. TrackBack URI
Einen Kommentar hinterlassen
You must be logged in to post a comment.
Entries and comments feeds. Valid XHTML and CSS. ^Top^ Powered by WordPress with jd-sunset theme design by John Doe.