Chapter 6 Configuring a VPN Using Easy VPN and an IPSec Tunnel

Configuration Example

BETA DRAFT - CISCO CONFIDENTIAL

!

crypto isakmp policy 1 encryption 3des authentication pre-share group 2

lifetime 480

!

crypto isakmp client configuration group rtr-remote key secret-password

dns 10.50.10.1 10.60.10.1 domain company.com

pool dynpool

!

crypto ipsec transform-set vpn1 esp-3des esp-sha-hmac

!

crypto ipsec security-association lifetime seconds 86400

!

crypto dynamic-map dynmap 1 set transform-set vpn1 reverse-route

!

crypto map static-map 1 ipsec-isakmp dynamic dynmap crypto map dynmap isakmp authorization list rtr-remote crypto map dynmap client configuration address respond

crypto ipsec client ezvpn ezvpnclient connect auto

group 2 key secret-password mode client

peer 192.168.100.1

!

interface fastethernet 0

crypto ipsec client ezvpn ezvpnclient outside crypto map static-map

!

interface vlan 1

crypto ipsec client ezvpn ezvpnclient inside

!

Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide

 

OL-6426-02

6-11

 

 

 

Page 83
Image 83
Cisco Systems OL-6426-02 manual Crypto ipsec client ezvpn ezvpnclient connect auto