Solved

configuration for cisco router to use VPN ?

Posted on 2009-05-19
6
233 Views
Last Modified: 2012-05-07
I have only one problem; still I cannot use My VPN

I connect My PC to Router R1  throw interface F0/1
Then I ping all this IP
172.15.5.1                OK (Replay)
172.31.106.206       OK (Replay)
172.31.106.205       NO (Request Time out)
172.31.106.129      NO (Request Time out)
172.31.106.130      NO (Request Time out)
172.28.1.1            NO (Request Time out)

But if I connect the PC to the console I can ping

172.15.5.1                OK (Replay)
172.31.106.206       OK (Replay)
172.31.106.205       OK (Replay)
172.31.106.129      OK (Replay)
172.31.106.130      OK (Replay)
172.28.1.1            NO (Request Time out)


all my router model is 2801
R1.txt
R2.txt
VPN.bmp
0
Comment
Question by:AymanDasa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 1

Expert Comment

by:equarando
ID: 24428940
I didnt see any VPN configuration on either of the Routers.

I am going to list the steps to set one up. just repeat the process on the other router, just switching IP's

1.) R1(config)# crypto isakmp enable

2.) R1(config)# crypto isakmp policy 10
R1(config-isakmp)# authentication pre-share
R1(config-isakmp)# encryption aes 256
R1(config-isakmp)# hash sha
R1(config-isakmp)# group 5
R1(config-isakmp)# lifetime 3600

3.) R1(config)# crypto isakmp key PASSWORD address (IP of other router)

4.) R1(config)# crypto ipsec transform-set 50 esp-aes 256 esp-sha-hmac ah-sha-hmac

5.) R1(config)# access-list 101 permit ip (LOCAL LAN) (REMOTE LAN)

6.) R1(config)# crypto map NAME 10 ipsec-isakmp

7.) R1(config-crypto-map)# match address 101

8.) R1(config-crypto-map)# set peer (IP OF R2)
R1(config-crypto-map)# set pfs group5
R1(config-crypto-map)# set transform-set 50

9.)on the outside interface apply the crypto map
   R1(config-if)# crypto map NAME
 
0
 

Author Comment

by:AymanDasa
ID: 24429052
Dear equarando
" crypto " not in my router command ? Im using 2800 cisco router
0
 
LVL 1

Expert Comment

by:equarando
ID: 24429078
You prolly are not running a version of the IOS that supports IPSEC VPN's
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:AymanDasa
ID: 24429820
Dear equarando

I add this Lines in R1




R1(config)#router bgp 65360
R1(config-router)#network 172.15.0.0 255.255.0.0
!
Then I connect My PC to Router R1  throw interface F0/1
Then I ping all this IP
172.15.5.1              OK (Replay)
172.31.106.206      OK (Replay)
172.31.106.205      OK (Replay)
172.31.106.129      OK (Replay)
172.31.106.130      OK (Replay)
172.28.1.1              NO (Request Time out)


0
 
LVL 1

Accepted Solution

by:
equarando earned 500 total points
ID: 24436602
Yes, but that has nothing to do with not being able to connect with a VPN
0
 

Author Comment

by:AymanDasa
ID: 24458123
now I add another line

R1(config)#router bgp 65360
R1(config-router)#red con

and the result is

Then I connect My PC to Router R1  throw interface F0/1
Then I ping all this IP
172.15.5.1              OK (Replay)
172.31.106.206      OK (Replay)
172.31.106.205      OK (Replay)
172.31.106.129      OK (Replay)
172.31.106.130      OK (Replay)
172.28.1.1              OK (Replay)

Mr. equarando
I will give you the point not for sol but for helping to me


0

Featured Post

Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question