Cisco Systems OL-24124-01 manual IOS configuration requirements, 17-3

Page 3

Chapter 17 Configuring Virtual Private Networks

IOS configuration requirements

 

Table 17-1

VPN Configuration Checklist

 

 

 

Configuration Steps

 

Notes and Related Procedures

 

 

Step 6

Add the VPN Group and VPN

In Cisco Unified Communications Manager Administration,

 

Profile to a Common Phone

choose Device > Device Settings > Common Phone Profile. For

 

Profile.

 

more information, see the “Common Phone Profile Configuration”

 

 

 

chapter in the Cisco Unified Communications Manager

 

 

 

Administration Guide.

 

 

 

Note If you do not associate a VPN Profile with the Common

 

 

 

Phone Profile, VPN uses the default settings defined in the

 

 

 

VPN Feature Configuration window.

 

 

 

Step 7

Upgrade the firmware for Cisco

To run the Cisco VPN client, a supported Cisco Unified IP Phone

 

Unified IP Phones to a version that

must be running firmware release 9.0(2) or higher. For more

 

supports VPN.

 

information about upgrading firmware, see the Cisco Unified IP

 

 

 

Phone Administration Guide for Cisco Unified Communications

 

 

 

Manager for your Cisco Unified IP Phone model.

 

 

 

Note Before you can upgrade to firmware release 9.0(2),

 

 

 

supported Cisco Unified IP Phones must be running

 

 

 

firmware release 8.4(4) or later.

 

 

 

Step 8

Using a supported Cisco Unified

For more information about configuring a Cisco Unified IP Phone

 

IP Phone, establish a VPN

and establishing a VPN connection, see the Cisco Unified IP

 

connection.

 

Phone Administration Guide for Cisco Unified Communications

 

 

 

Manager for your Cisco Unified IP Phone model.

 

 

 

 

IOS configuration requirements

Before you create an ISO configuration for VPN client on IP phone, complete the following steps:

Step 1 Install IOS Software version 15.1(2)T or later

Feature Set/License: Universal (Data & Security & UC) for IOS ISR-G2

Feature Set/License: Advanced Security for IOS ISR

Step 2 Activate the SSL VPN License

Configuring IOS for VPN client on IP phone

Perform the following steps to configure IOS for VPN client on IP phone.

Step 1 Configure IOS locally.

a.Configure the Network Interface

Example:

router(config)# interface GigabitEthernet0/0

router(config-if)#description "outside interface"

router(config-if)#ip address 10.1.1.1 255.255.255.0

 

 

Cisco Unified Communications Manager Security Guide

 

 

 

 

 

 

OL-24124-01

 

 

17-3

 

 

 

 

 

Page 2 Page 4
Image 3
Page 2 Page 4
Contents Configuring the VPN Feature Supported Devices17-1 17-2 Configuration StepsIOS configuration requirements Configuring IOS for VPN client on IP phone17-3 17-4 Routerconfig# ip route destip mask gatewayip17-5 Sample IOS configuration summaryAaa new-model 17-6Hidekeys 17-717-8 ASA configuration requirements Configuring ASA for VPN client on IP phone17-9 17-10 17-11 Sample ASA configuration summarySame-security-traffic permit inter-interface 17-1217-13 Svc rekey time 17-1417-15 17-16
Top Page Image Contents