We help IT Professionals succeed at work.

VPN Client

Anthony M
Anthony M asked
on
How do i configure VPN Client based on this information.....
Do i have to use the ip address outside as the host information
Which is the group Name

sysopt connection permit-ipsec
crypto ipsec transform-set newset esp-aes esp-md5-hmac
crypto dynamic-map dynmap 10 set transform-set newset
crypto map newmap 10 ipsec-isakmp dynamic dynmap
crypto map newmap client configuration address initiate
crypto map newmap interface outside
isakmp enable outside
isakmp identity address
isakmp policy 10 authentication pre-share
isakmp policy 10 encryption aes
isakmp policy 10 hash md5
isakmp policy 10 group 2
isakmp policy 10 lifetime 86400
vpngroup vpnr3mote address-pool ippool
vpngroup vpnr3mote split-tunnel vpnr3mote_splitTunnelAcl
vpngroup vpnr3mote idle-time 1800
vpngroup vpnr3mote password ********
Comment
Watch Question

First, add this command to the existing configuration:

isakmp nat-traversal

Next, you would install the VPN client and create a new VPN connection.  See the attached file.

In the screen shot, x.x.x.x in the "Host" field would be the public outside interface IP address of the PIX firewall.  You will also need to know the VPN group password for the group named "vpnr3mote", which is referenced in the configuration command:

vpngroup vpnr3mote password ********

Click save and give it a whirl...
vpn1.png
Anthony MManager

Author

Commented:
Thanks much it works
but i Cant ping my remote site network new question though
From what configuration you posted, I see that you should add the following command:

isakmp nat-traversal

There may be other commands you need to add/modify, but I won't know until I see the complete configuration.  You can try adding the command above and if that doesn't fix it, then please post your entire configuration (sanitized) and I'll take a look...
Oops, I already posted to the other question you opened up...getting ahead of myself...need more coffee...:)
Anthony MManager

Author

Commented:
Hey No problem  ...... :)

Explore More ContentExplore courses, solutions, and other research materials related to this topic.