Link to home
Create AccountLog in
Avatar of AXISHK
AXISHK

asked on

Cisco 1841 Configuration Issue

I have review some configuration in a Cisco 1841 router, use to form VPN tunnel with another site but I have no idea what the follow statement is used for. Can anyone explain the purpose of the following statement

aaa new-model         (???)
aaa authentication login userauthen group radius  (???)
aaa authorization network group author local  (???)
   :
   :
aaa session-id common  (???)
   :
   :
crypto ipsec df-bit clear (???)
   :
crypto map mysite client authentication list userauthen    (???)
crypto map mysite isakmp authorization list groupauthor  (???)
crypot map mysite client configuration address respond   (???)
crypto map mysite 10 ipsec-isakmp
    set peer xxx.xxx.xx.xx
        :
    qos pre-classify         (???)

    :

radius-server host xxx.xxx.xxx.xx auth-port 1645  acc-port 1646  key cisco   (???)

Avatar of Scotty_cisco
Scotty_cisco

everything starting AAA is for the radius authentication peices Authenication Authorization and Accounting.  Everything starting with a Crypto  is for VPN access and authentication of the VPN users.

Thanks
Scott
ASKER CERTIFIED SOLUTION
Avatar of Scotty_cisco
Scotty_cisco

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Avatar of AXISHK

ASKER

For the statement

As far as I know, a shared key is involvied to form a tunnel between two site. What is the purpose of this statement ?
Does it mean the VPN tunnel to be authenticated through RADIUS before a tunnel could be built ?

crypto map mysite client authentication list userauthen    
crypto map mysite isakmp authorization list groupauthor  
crypot map mysite client configuration address respond  
Avatar of AXISHK

ASKER

Thank for your hints, finally crack it !