Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1092
  • Last Modified:

Cisco 876 router and Cisco VPN Client software

I have a (partly) working Cisco 876 but can't connect with the Cisco VPN Client software.
The added the following commands to the config:

crypto isakmp policy 3
 encr 3des
 hash md5
 authentication pre-share
 group 2

crypto isakmp client configuration group 3000client
 key *****
 dns 192.168.105.10
 domain domain.local
 pool vpdnpool
 acl 108

crypto ipsec transform-set transformset esp-3des esp-md5-hmac
!
crypto identity address
 !
 !
 crypto dynamic-map dynmap 10
 set transform-set transformset
!
!
crypto map map client authentication list userauthen
crypto map map client authorization list groupauthor
crypto map map client configuration address initiate
crypto map map client configuration address respond
crypto map map 20 ipsec-isakmp dynamic dynmap

ip local pool vpdnpool 172.16.199.1 172.16.199.254

Could be in the access-list.? Which port should be open?
0
CLEARPATH
Asked:
CLEARPATH
1 Solution
 
Net-PCommented:
The following ports should be open in the Inbound-ACL on the interface with the crypto map:

ESP (IP/50)
UDP 500
UDP 4500

#####

crypto map map client configuration address initiate
crypto map map client configuration address respond

remove: crypto map map client configuration address initiate

0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now