• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 266
  • Last Modified:

VPN Client

How do i configure VPN Client based on this information.....
Do i have to use the ip address outside as the host information
Which is the group Name

sysopt connection permit-ipsec
crypto ipsec transform-set newset esp-aes esp-md5-hmac
crypto dynamic-map dynmap 10 set transform-set newset
crypto map newmap 10 ipsec-isakmp dynamic dynmap
crypto map newmap client configuration address initiate
crypto map newmap interface outside
isakmp enable outside
isakmp identity address
isakmp policy 10 authentication pre-share
isakmp policy 10 encryption aes
isakmp policy 10 hash md5
isakmp policy 10 group 2
isakmp policy 10 lifetime 86400
vpngroup vpnr3mote address-pool ippool
vpngroup vpnr3mote split-tunnel vpnr3mote_splitTunnelAcl
vpngroup vpnr3mote idle-time 1800
vpngroup vpnr3mote password ********
0
Anthony M
Asked:
Anthony M
  • 3
  • 2
1 Solution
 
batry_boyCommented:
First, add this command to the existing configuration:

isakmp nat-traversal

Next, you would install the VPN client and create a new VPN connection.  See the attached file.

In the screen shot, x.x.x.x in the "Host" field would be the public outside interface IP address of the PIX firewall.  You will also need to know the VPN group password for the group named "vpnr3mote", which is referenced in the configuration command:

vpngroup vpnr3mote password ********

Click save and give it a whirl...
vpn1.png
0
 
Anthony MManagerAuthor Commented:
Thanks much it works
but i Cant ping my remote site network new question though
0
 
batry_boyCommented:
From what configuration you posted, I see that you should add the following command:

isakmp nat-traversal

There may be other commands you need to add/modify, but I won't know until I see the complete configuration.  You can try adding the command above and if that doesn't fix it, then please post your entire configuration (sanitized) and I'll take a look...
0
 
batry_boyCommented:
Oops, I already posted to the other question you opened up...getting ahead of myself...need more coffee...:)
0
 
Anthony MManagerAuthor Commented:
Hey No problem  ...... :)
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now