Cisco Systems OL-5532-02 Defining the VPN 3000 L2TP Parameters, Control, Start Time, End Time

Page 21

Chapter 4 Remote Access VPN Services

Creating Remote Access VPN Policies

Step 2 Follow the instructions in Table 4-9to enter values for each day of the week.

Table 4-9 Remote Access VPN Policy – Access Hours Fields

Field Name

 

Type

Instructions

 

 

 

 

 

 

Name

 

text box

Enter a name to identify the access hours assigned to this group.

 

 

 

 

 

Control

 

drop-down

There are two control options:

 

 

list

during – Allow access during the hours in the specified range (default).

 

 

 

 

 

 

except – Allow access except during the hours in the specified range.

 

 

 

 

 

Start Time

 

text box in

Enter starting time of the access time range.

 

 

time format

 

 

 

 

 

 

 

End Time

 

text box in

Enter ending time of the access time range.

 

 

time format

 

 

 

 

 

 

 

Step 3

Click Next to continue to the VPN 3000 L2TP page as described in the “Defining the VPN 3000 L2TP

 

Parameters” section on page 4-21.

 

 

 

 

 

Defining the VPN 3000 L2TP Parameters

L2TP provides tunneling of PPP. An L2TP session defines the communications transactions between the LAC and the LNS that support tunneling of a single PPP connection. For further information on VPN 3000 L2TP parameters, refer to the VPN 3000 online help.

If you selected the L2TP over IPsec option in the Tunneling Protocols field, you must set values for the parameters in this section.

Step 1 The Remote Access VPN Policy – VPN 3000 L2TP Editor page appears as shown in Figure 4-21.

Cisco IP Solution Center Integrated VPN Management Suite Security User Guide, 3.2

 

OL-5532-02

4-21

 

 

 

Page 20 Page 22
Image 21
Page 20 Page 22
Contents Remote Access VPN Services Adding AAA Server Devices to Your Repository AAA Servers Name TimeoutOwner Select button IP AddressCreating Encryption Policies Policies Click Remote Access VPN PolicyRemote Access VPN Policy General Editor Confirm Password Group PasswordXAuth Timeout Use ModeDefault Domain AuthenticationNAT Traversal IKE NAT KeepaliveDefining Address Pools Remote Access VPN Policy Address PoolsStarting Address Ending AddressNet Mask Defining Split Tunneling Networks Optional 11 Remote Access VPN Policy Split Tunneling Network ListPolicy Split TunnelingGenerate Create14 The Everything Option for Split Tunneling Defining the Remote Access User List OptionalUser ID PasswordSA Idle Timeout Enabled SA Idle TimeoutDefining Cisco IOS Software-Specific Parameters Reverse Route Defining PIX Firewall-Specific ParametersInjection Group LockDefining VPN 3000-Specific Parameters Idle TimeoutMax Connect Time Sysopt ConnectionOnly Passwords Logins Min PasswordAuthentication on SimultaneousDefining the VPN 3000 Access Hours Control Defining the VPN 3000 L2TP ParametersStart Time End TimeL2TP Compression Use Client AddressRequired Require StatelessSummary MSCHAPv1MSCHAPv2 23 The Policies Page with Policy Status Displayed Creating Remote Access VPN Service Requests Network-based IPsecDescription Policies Remote AccessAAA Servers CPEs29 CPEs Associated with Remote Access Service Dialog Box 31 Add/Remove Templates Dialog Box 32 The Template DataFile Chooser Active ActionOL-5532-02
Top Page Image Contents