AXISHK
asked on
Cisco 1841 Configuration Issue
I have review some configuration in a Cisco 1841 router, use to form VPN tunnel with another site but I have no idea what the follow statement is used for. Can anyone explain the purpose of the following statement
aaa new-model (???)
aaa authentication login userauthen group radius (???)
aaa authorization network group author local (???)
:
:
aaa session-id common (???)
:
:
crypto ipsec df-bit clear (???)
:
crypto map mysite client authentication list userauthen (???)
crypto map mysite isakmp authorization list groupauthor (???)
crypot map mysite client configuration address respond (???)
crypto map mysite 10 ipsec-isakmp
set peer xxx.xxx.xx.xx
:
qos pre-classify (???)
:
radius-server host xxx.xxx.xxx.xx auth-port 1645 acc-port 1646 key cisco (???)
aaa new-model (???)
aaa authentication login userauthen group radius (???)
aaa authorization network group author local (???)
:
:
aaa session-id common (???)
:
:
crypto ipsec df-bit clear (???)
:
crypto map mysite client authentication list userauthen (???)
crypto map mysite isakmp authorization list groupauthor (???)
crypot map mysite client configuration address respond (???)
crypto map mysite 10 ipsec-isakmp
set peer xxx.xxx.xx.xx
:
qos pre-classify (???)
:
radius-server host xxx.xxx.xxx.xx auth-port 1645 acc-port 1646 key cisco (???)
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
For the statement
As far as I know, a shared key is involvied to form a tunnel between two site. What is the purpose of this statement ?
Does it mean the VPN tunnel to be authenticated through RADIUS before a tunnel could be built ?
crypto map mysite client authentication list userauthen
crypto map mysite isakmp authorization list groupauthor
crypot map mysite client configuration address respond
As far as I know, a shared key is involvied to form a tunnel between two site. What is the purpose of this statement ?
Does it mean the VPN tunnel to be authenticated through RADIUS before a tunnel could be built ?
crypto map mysite client authentication list userauthen
crypto map mysite isakmp authorization list groupauthor
crypot map mysite client configuration address respond
ASKER
Thank for your hints, finally crack it !
Thanks
Scott