Advertisement

01.09.2008 at 12:58PM PST, ID: 23070836
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
6.4

Setting up a VPN for remote clients on Cisco 2620 or 3725 router

Asked by adamshields in Network Routers, Virtual Private Networking (VPN), Networking Hardware Firewalls

Tags: ,

My client can connect to the router via Cisco client. The client is unable to connect (ping) any of the other computers on the subnet 172.16.X.X/24 nor can they ping it. The client can browse the internet though. Any idea how to get them to commnicate.

Also is it possible to connect to the router using the built in WinXP/Vista client rather than use the Cisco client?Start Free Trial 
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:
84:
85:
86:
87:
88:
89:
90:
91:
92:
93:
94:
95:
96:
97:
98:
99:
100:
101:
102:
103:
104:
105:
106:
107:
108:
109:
110:
111:
112:
113:
114:
115:
116:
117:
118:
119:
120:
121:
122:
123:
124:
125:
126:
127:
128:
129:
130:
131:
132:
133:
134:
135:
136:
137:
138:
139:
140:
141:
142:
143:
144:
145:
146:
147:
148:
149:
150:
151:
152:
153:
154:
155:
156:
157:
158:
159:
160:
161:
162:
163:
164:
165:
166:
167:
168:
169:
170:
171:
172:
173:
174:
175:
176:
177:
178:
179:
180:
181:
182:
183:
184:
185:
186:
187:
188:
189:
190:
191:
192:
193:
194:
195:
196:
197:
198:
199:
200:
201:

!This is the running config of the router: 172.16.3.2
!----------------------------------------------------------------------------
!version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 3725router
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$BUZ8$sNjxnHHht1NP3co5Vkj2o0
!
aaa new-model
!
!
aaa authentication login default local
aaa authentication login sdm_vpn_xauth_ml_1 local
aaa authorization exec default local 
aaa authorization network sdm_vpn_group_ml_1 local 
!
aaa session-id common
clock timezone PCTime -5
clock summer-time PCTime date Apr 6 2003 2:00 Oct 26 2003 2:00
no network-clock-participate slot 1 
no network-clock-participate slot 2 
ip cef
!
!
!
!
ip domain name neocipher.net
ip name-server 205.152.144.23
ip name-server 205.152.132.23
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-995375956
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-995375956
 revocation-check none
 rsakeypair TP-self-signed-995375956
!
!
crypto pki certificate chain TP-self-signed-995375956
 certificate self-signed 01
  3082024E 308201B7 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 39393533 37353935 36301E17 0D303230 33303130 36313133 
  335A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F 
  532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3939 35333735 
  39353630 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100 
  CF80B9FF 105E6689 8ECB41A9 A433EA68 9142AC1C 27941675 D8308151 4C68D1E8 
  A13039C9 75CBB9B3 C5078A7B FF67D8C0 FC1EBBF8 0C17EE00 BCA4056E 1903F769 
  0C21CAB6 D04CCAAA 73D4F744 523FE2B1 0E2AC55C F85A6896 347328B1 504B8A05 
  FAA9C1DF 31786DA6 3F64652C 9AE3B1C5 5E69122C 748160E3 818F110F 3978F0FF 
  02030100 01A37830 76300F06 03551D13 0101FF04 05300301 01FF3023 0603551D 
  11041C30 1A821833 37323572 6F757465 722E6E65 6F636970 6865722E 6E657430 
  1F060355 1D230418 30168014 FC48BF7D 9B97167A 41CF22FD 013C798A 154EC666 
  301D0603 551D0E04 160414FC 48BF7D9B 97167A41 CF22FD01 3C798A15 4EC66630 
  0D06092A 864886F7 0D010104 05000381 8100CA4B 1A56F508 476C297C 32C830F2 
  21EBA101 A3D47202 7DD7FCB8 E91911EF 6EFC8095 0AA1B548 14468A43 41A8E271 
  176CC0F1 C576F65F 125A2A64 785149D9 1A302553 37E59C30 B59CEF3D C63E5019 
  8897B79D C3DA4587 5EF1BC45 B10CB03C 0BFC1E1F 0AF2DF66 16653E18 5E2FC795 
  5D9BB821 85471E48 C34845A2 1BE83EAF F58D
  quit
username rsreese privilege 15 secret 5 $1$k.mV$065vhIx6xkX.kM6jxTAOM.
!
!
! 
!
crypto isakmp policy 1
 encr 3des
 authentication pre-share
 group 2
!
crypto isakmp policy 2
 encr aes 256
 authentication pre-share
 group 2
!
crypto isakmp client configuration group VPN-Users
 key test00
 dns 205.152.144.23 205.152.132.23
 domain neocipher.net
 pool SDM_POOL_2
 max-logins 1
 netmask 255.255.255.0
!
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac 
!
crypto ipsec profile 65535
 set transform-set ESP-3DES-SHA 
!
!
crypto dynamic-map SDM_DYNMAP_1 1
 set transform-set ESP-3DES-SHA 
 reverse-route
!
!
crypto map SDM_CMAP_1 client authentication list default
crypto map SDM_CMAP_1 isakmp authorization list sdm_vpn_group_ml_1
crypto map SDM_CMAP_1 client configuration address respond
crypto map SDM_CMAP_1 65535 ipsec-isakmp dynamic SDM_DYNMAP_1 
!
!
!
!
interface FastEthernet0/0
 ip address 172.16.3.2 255.255.255.0
 speed 100
 full-duplex
 crypto map SDM_CMAP_1
!
interface Serial0/0
 no ip address
 shutdown
 clock rate 2000000
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial0/1
 no ip address
 shutdown
 clock rate 2000000
!
interface Virtual-Template1
 ip unnumbered FastEthernet0/0
 peer default ip address pool SDM_POOL_2
!
router eigrp 10
 network 172.16.0.0
 auto-summary
!
ip local pool SDM_POOL_1 172.16.5.50 172.16.5.100
ip local pool SDM_POOL_2 172.16.10.100 172.16.10.150
ip default-gateway 172.16.0.1
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 172.16.0.1
ip route 172.16.0.0 255.255.255.0 172.16.3.1 150
!
!
no ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 600 life 86400 requests 10000
!
ip access-list extended testing
 remark SDM_ACL Category=4
 remark test
 permit ip any any
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
 password 7 05080F1C2243
 transport input ssh
line vty 5 903
 transport input ssh
!
ntp clock-period 17180382
ntp server 129.6.15.29 source FastEthernet0/0 prefer
!
end
[+][-]01.09.2008 at 02:43PM PST, ID: 20623287

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]01.09.2008 at 02:45PM PST, ID: 20623298

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Network Routers, Virtual Private Networking (VPN), Networking Hardware Firewalls
Tags: 2620, cisco
Sign Up Now!
Solution Provided By: MagellanTX
Participating Experts: 1
Solution Grade: B
 
 
[+][-]01.09.2008 at 03:34PM PST, ID: 20623627

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]01.09.2008 at 03:57PM PST, ID: 20623751

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]01.09.2008 at 06:15PM PST, ID: 20624422

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]01.09.2008 at 10:39PM PST, ID: 20625368

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]01.10.2008 at 08:31AM PST, ID: 20628456

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]01.10.2008 at 08:31AM PST, ID: 20628459

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628