CISCO ASA L2TP ACCESS: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „*http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/vpn_l2tp_ipsec.html“) |
Thomas (Diskussion | Beiträge) |
||
| Zeile 1: | Zeile 1: | ||
| + | |||
| + | <pre> | ||
| + | ip local pool sales_addresses 209.165.202.129-209.165.202.158 | ||
| + | |||
| + | group-policy sales_policy internal | ||
| + | |||
| + | group-policy sales_policy attributes | ||
| + | |||
| + | wins-server value 209.165.201.3 209.165.201.4 | ||
| + | |||
| + | dns-server value 209.165.201.1 209.165.201.2 | ||
| + | |||
| + | vpn-tunnel-protocol l2tp-ipsec | ||
| + | |||
| + | tunnel-group DefaultRAGroup general-attributes | ||
| + | |||
| + | default-group-policy sales_policy | ||
| + | |||
| + | address-pool sales_addresses | ||
| + | |||
| + | tunnel-group DefaultRAGroup ipsec-attributes | ||
| + | |||
| + | pre-shared-key * | ||
| + | |||
| + | tunnel-group DefaultRAGroup ppp-attributes | ||
| + | |||
| + | no authentication pap | ||
| + | |||
| + | authentication chap | ||
| + | |||
| + | authentication ms-chap-v1 | ||
| + | |||
| + | authentication ms-chap-v2 | ||
| + | |||
| + | crypto ipsec ikev1 transform-set my-transform-set-ikev1 esp-des esp-sha-hmac | ||
| + | |||
| + | crypto ipsec ikev1 transform-set my-transform-set-ikev1 mode transport | ||
| + | |||
| + | crypto dynamic-map dyno 10 set ikev1 transform-set trans | ||
| + | |||
| + | crypto map vpn 20 ipsec-isakmp dynamic dyno | ||
| + | |||
| + | crypto map vpn interface outside | ||
| + | |||
| + | crypto ikev1 enable outside | ||
| + | |||
| + | crypto ikev1 policy 10 | ||
| + | |||
| + | authentication pre-share | ||
| + | |||
| + | encryption 3des | ||
| + | |||
| + | hash sha | ||
| + | |||
| + | group 2 | ||
| + | |||
| + | lifetime 86400 | ||
| + | |||
| + | |||
| + | </pre> | ||
| + | |||
*http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/vpn_l2tp_ipsec.html | *http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/vpn_l2tp_ipsec.html | ||
Aktuelle Version vom 15. Februar 2016, 17:37 Uhr
ip local pool sales_addresses 209.165.202.129-209.165.202.158 group-policy sales_policy internal group-policy sales_policy attributes wins-server value 209.165.201.3 209.165.201.4 dns-server value 209.165.201.1 209.165.201.2 vpn-tunnel-protocol l2tp-ipsec tunnel-group DefaultRAGroup general-attributes default-group-policy sales_policy address-pool sales_addresses tunnel-group DefaultRAGroup ipsec-attributes pre-shared-key * tunnel-group DefaultRAGroup ppp-attributes no authentication pap authentication chap authentication ms-chap-v1 authentication ms-chap-v2 crypto ipsec ikev1 transform-set my-transform-set-ikev1 esp-des esp-sha-hmac crypto ipsec ikev1 transform-set my-transform-set-ikev1 mode transport crypto dynamic-map dyno 10 set ikev1 transform-set trans crypto map vpn 20 ipsec-isakmp dynamic dyno crypto map vpn interface outside crypto ikev1 enable outside crypto ikev1 policy 10 authentication pre-share encryption 3des hash sha group 2 lifetime 86400