!! connect auto – means it will connect automatically !! On the remote side we define an Easy VPN client !! Add the crypto map on the WAN interface or where your VPN tunnels will terminate !! We get everything together in a crypto dynamic mapĬrypto map clientmap client authentication list userauthenĬrypto map clientmap isakmp authorization list groupauthorĬrypto map clientmap client configuration address respondĬrypto map clientmap 10 ipsec-isakmp dynamic dynmap !! The IPSec transform set You can pick a stronger one like esp-aes 256, butĬrypto ipsec transform-set myset esp-3des esp-sha-hmac !! “Save-password” allow client to save the password in an automatic vpn connectionĬrypto isakmp client configuration group vpngrp !! We add a key and ! Important ! “save-password” command The number and encryption are your choice !! We define a new AAA model for authentication and authorizationĪaa authentication login userauthen localĪaa authorization network groupauthor local The only issue in that document is that the Easy VPN tunnel needs manual intervention to connect, which I want to avoid.įor those who need a quick and secure Easy VPN connection here is my sample configuration: EasyVPN-Server In search of possible configurations, I’ve found this Cisco configuration example. The idea is that behind the Client router, I will have a group of people who need to connect to the headquarter, so I don’t want each of them to use personal VPN connections. The other method is some client (PC) with software connection to Router / PIX / ASA / VPN Concentrator (Server). It supposed to be a simple configuration and it was after solving all issues that came into play.įirst of all, I needed an Easy VPN Router(client) – to – Router(server). Actually it is pretty old, but still used by many companies or people to connect remote site / remote workers to headquarter.Ī few days ago I was looking to connect a remote site in a simple way but still secure and a colleagues suggested me to use Easy VPN.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |