Chapter 9 Configuring Security Features
Configuring VPN
| Command or Action | Purpose | |
Step 5 |
|
|
|
exit |
| Exits IKE group policy configuration mode and | |
| Example: |
| enters global configuration mode. |
|
|
| |
|
| ||
| Router(config)# |
| |
Step 6 |
|
| |
ip local pool {default pool name} | Specifies a local address pool for the group. | ||
| For details about this command and additional | ||
|
|
| |
| Example: |
| parameters that can be set, see Cisco IOS Dial |
|
| Technologies Command Reference. | |
| Router(config)# ip local pool dynpool | ||
|
| ||
| 30.30.30.20 | 30.30.30.30 |
|
| Router(config)# |
| |
|
|
|
|
Apply Mode Configuration to the Crypto Map
To apply mode configuration to the crypto map, perform these steps, beginning in global configuration mode:
SUMMARY STEPS
1.crypto map
2.crypto map tag client configuration address [initiate respond]
DETAILED STEPS
| Command or Action | Purpose |
Step 1 |
|
|
crypto map | Applies mode configuration to the crypto map and | |
| list | enables key lookup (IKE queries) for the group |
| Example: | policy from an authentication, authorization, and |
| accounting (AAA) server. | |
|
| |
| Router(config)# crypto map dynmap isakmp |
|
| authorization list |
|
| Router(config)# |
|
Step 2 |
|
|
crypto map tag client configuration address | Configures the router to reply to mode | |
| [initiate respond] | configuration requests from remote clients. |
| Example: |
|
| Router(config)# crypto map dynmap client |
|
| configuration address respond |
|
| Router(config)# |
|
|
|
|
| Cisco 819 Series Integrated Services Routers Software Configuration Guide |
|
