[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1095
  • Last Modified:

Cisco 876 router and Cisco VPN Client software

I have a (partly) working Cisco 876 but can't connect with the Cisco VPN Client software.
The added the following commands to the config:

crypto isakmp policy 3
 encr 3des
 hash md5
 authentication pre-share
 group 2

crypto isakmp client configuration group 3000client
 key *****
 dns 192.168.105.10
 domain domain.local
 pool vpdnpool
 acl 108

crypto ipsec transform-set transformset esp-3des esp-md5-hmac
!
crypto identity address
 !
 !
 crypto dynamic-map dynmap 10
 set transform-set transformset
!
!
crypto map map client authentication list userauthen
crypto map map client authorization list groupauthor
crypto map map client configuration address initiate
crypto map map client configuration address respond
crypto map map 20 ipsec-isakmp dynamic dynmap

ip local pool vpdnpool 172.16.199.1 172.16.199.254

Could be in the access-list.? Which port should be open?
0
CLEARPATH
Asked:
CLEARPATH
1 Solution
 
Net-PCommented:
The following ports should be open in the Inbound-ACL on the interface with the crypto map:

ESP (IP/50)
UDP 500
UDP 4500

#####

crypto map map client configuration address initiate
crypto map map client configuration address respond

remove: crypto map map client configuration address initiate

0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now