Improve company productivity with a Business Account.Sign Up

x
?
Solved

VPN Clients to Connect IPsec

Posted on 2012-04-08
7
Medium Priority
?
832 Views
Last Modified: 2012-04-15
Dear Experts,

I trying to make an VPN connection on router 1921 using this link
I do the same thing in that article
I can connect to router from outside but can not ping or can not use any resource/services

Here is some command I used to configure the tunnel

aaa new-model
aaa authentication login userauthen local
aaa authorization network groupauthor local
username user password 0 cisco

crypto isakmp policy 3
 encr 3des
 authentication pre-share
 group 2

crypto isakmp client configuration group vpnclient
 key cisco123
 dns 10.10.10.10
 wins 10.10.10.20
 domain cisco.com
 pool ippool
 acl 101


crypto ipsec transform-set myset esp-3des esp-md5-hmac

crypto dynamic-map dynmap 10
 set transform-set myset
 reverse-route

crypto map clientmap client authentication list userauthen
crypto map clientmap isakmp authorization list groupauthor
crypto map clientmap client configuration address respond
crypto map clientmap 10 ipsec-isakmp dynamic dynmap

interface Ethernet0/0
 ip address 10.10.10.1 255.255.255.0
 half-duplex
 ip nat inside

interface FastEthernet1/0
 ip address 172.16.1.1 255.255.255.0
 ip nat outside
crypto map clientmap

ip local pool ippool 192.168.1.1 192.168.1.2

ip nat inside source list 111 interface FastEthernet1/0 overload

access-list 111 deny ip 10.10.10.0 0.0.0.255 192.168.1.0 0.0.0.255
access-list 111 permit ip any any

access-list 101 permit ip 10.10.10.0 0.0.0.255 192.168.1.0 0.0.0.255


I do exactly the same but I'm not use same version with VPN Client in the article, I don't thing that s the reason.

http://www.cisco.com/en/US/products/hw/routers/ps274/products_configuration_example09186a0080819289.shtml

Link Article from cisco.

Can you check and give me advise .

Thanks any way
0
Comment
Question by:bmkhoi
  • 5
7 Comments
 
LVL 1

Author Comment

by:bmkhoi
ID: 37821381
I using Cisco VPN Client Ver 5 not 4.8 like in the article
0
 
LVL 1

Author Comment

by:bmkhoi
ID: 37822360
no one here !? :'(
0
 
LVL 42

Expert Comment

by:noci
ID: 37822666
For Linux there is:
openswan, strongswan

For Windows:
the green bow
0
NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

 
LVL 4

Expert Comment

by:Allvirtual
ID: 37823105
For ALL operating systems: Linux, Windows, Mac, Mobile .... and ALL VPN gateways: NCP
http://www.ncp-e.com
0
 
LVL 1

Accepted Solution

by:
bmkhoi earned 0 total points
ID: 37823154
no no I means is there some thing wrong with my configuration !?
0
 
LVL 1

Author Comment

by:bmkhoi
ID: 37827946
did it by myself, can I close or delete this question
0
 
LVL 1

Author Closing Comment

by:bmkhoi
ID: 37847971
did it by myself
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article will show you step-by-step instructions to build your own NTP CentOS server.  The network diagram shows the best practice to setup the NTP server farm for redundancy.  This article also serves as your NTP server documentation.
In short, I will be giving a guide on how to install UNMS on a virtual machine in hyper-v and change the default port for security (you don’t need to have a server, since Windows 10 supports hyper-v)
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

595 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question