Cisco VPN?

Hi, I have a Cisco 2621 XM router at my office. I need to set up a VPN connection to this router and use the Cisco VPN client. Can someone let me know what I will need to get this done? Thank you.
aej1973Asked:
Who is Participating?
 
pointermanksConnect With a Mentor Commented:
If you want to restrict what people can access then you put in a new subnet then you can limit where they can go by a ACL.

Connection entity will be the name of what you want to call the VPN connection
host is the IP address that you are connecting to (public IP NAT to private)
group authentication is a user name and password you put in so that the person connecting has to do double authentication.  Basically tells the connection to accept it or not then you can authenicate username and password.  Another level of security.
0
 
pointermanksCommented:
Need more information that what is up there now.  Do you have firewalls/ASA's in the network?
0
 
aej1973Author Commented:
no, I do not have  an ASA firewall. I have a 2621XM router with the security package (sec/ k9). Will I need a ASA firewall to impliment this VPN tunnel?

Also, to use the Cisco VPN client software will I need to have a licence from Cisco? Thanks for the help.
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
pointermanksCommented:
you need to get the *.pcl file for the VPN set up.  Should look something like this:  Also, if you have the software then no you do not need to have a license to have it work but you should....  

[main]
Description=VPN
Host=IP address
AuthType=1
GroupName=group name
GroupPwd= password
enc_GroupPwd=
EnableISPConnect=0
ISPConnectType=0
ISPConnect=
ISPPhonebook=
ISPCommand=
Username= user name
SaveUserPassword=0  (set these to 1 to save the password in the PCL file.)
UserPassword=
enc_UserPassword=
NTDomain=
EnableBackup=0
BackupServer=
EnableMSLogon=1
MSLogonType=0
EnableNat=1
TunnelingMode=0
TcpTunnelingPort=10000
CertStore=0
CertName=
CertPath=
CertSubjectName=
CertSerialHash=00000000000000000000000000000000
SendCertChain=0
PeerTimeout=90
EnableLocalLAN=0
0
 
aej1973Author Commented:
Would I need a license if I have an ASA firewall? Also, I am not very sure how to update the router with *.plc file. Thank you for the help.

-A
0
 
aej1973Author Commented:
I did have  word with my Cisco vendor and he mentioned that there are VPN cards available for my 2621XM router, how would I use this? Thanks for the help.
0
 
pointermanksCommented:
the PCL file resides on the computer you are using to connect with.  You will need to configure the ASA with the VPN connection opening the correct ports for the protocols you are utilizing.  I use a shared key then a user specific key that I generate utilizing keypass.  you will need to specify the ip address range that the VPN is going to be able to utilize as by default everything is blocked until you open it up.  If you are utilizing NAT then you will need to have the NAT rule set up to translate the public IP address to the private IP address of the router if that is what you are VPN'ng to.  I usually set up the VPN to go to the core router for the network then you can go from there to almost anywhere.  that allows me to RDC to servers and desktops to troubleshoot when I am off site.
0
 
aej1973Author Commented:
well, I guess I found the article I was looking for to configure a VPN connection on my 2621XM:

http://www.cisco.com/en/US/products/sw/secursw/ps5318/products_configuration_example09186a00806ad10e.shtml

I am a lillte confused about  a few things:

1) In the last step it tells me to create a new pool of IP address, what are these addresses? My lan network has a pool of 10.13.3.0, do I need to put a subset of this pool?
2) In the VPN client what will be:

- connection entry
-Host
- In the group auth what will be the name and password?


Thank you for the help.

-A
0
 
aej1973Author Commented:
I would like to award pts and close this question.
0
 
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.