Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco vpdn access list

Status
Not open for further replies.
suderman

suderman

Technical User
Aug 9, 2005
14
0
0
PL
Hello !

I have setup a simple vpdn server on a Cisco 800 series router.
It is used for remote users which are using W2k vpn client.
Protocole is pptp.

Users authenticate to the server using usernames defined locally on the router.
Then they get local ip address from pool defined also on the router.
This is working fine and I want it to stay like this.

What I would like to do now is only to make connection possible from several ip addresses.
I know it's possible by creating a simple access list but I don't know to which part of the configuration then assign it.

is also logging of vpdn connetcions possible ?

The configuration of vpdn look like this:

username user password 7 xxxxxxxxxxxxxxx

aaa authentication login default local
aaa authentication ppp default local
aaa authorization network default local

vpdn enable

!
vpdn-group 1
! Default PPTP VPDN group
description VPDN Group for remote Windows VPN clients
accept-dialin
protocol pptp
virtual-template 1
!

!
interface Virtual-Template1
ip unnumbered Ethernet1
peer default ip address pool vpn-local
no keepalive
ppp encrypt mppe auto
ppp authentication pap chap ms-chap
!

interface Virtual-Template1
ip unnumbered Ethernet1
ip mroute-cache
peer default ip address pool vpn-local
no keepalive
ppp encrypt mppe auto required
ppp authentication ms-chap ms-chap-v2
!

ip local pool vpn-local xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx

ip access-list standard vpn-users permit xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx

------------

Thank You.
 
Sort by date Sort by votes
Upvote 0 Downvote
Hello !

I've also setup VPN for cisco vpn clients but as far as I know Cisco vpn client is not free software that's why I wanted to use Windows based client.
 
Upvote 0 Downvote
My understanding of the VPN client software is that you are allowed unlimited users so long as they connect to a Cisco VPN server.
Following is directe from the EULA when installing:

Grant of License:
2. Cisco systems hereby grants to you the right to install and use the software on an unlimited number of computers, provided that each of those computers must use the software only to connect to Cisco systems products, and subject to export restrictions in paragraph 4 hereof. You may make one copy of the software for each such computer for the purpose of installing the software on that computer. The software is licensed for use only with Cisco systems products, and for no other use.

You do need something like a smartnet contract to allow access to download the software.
 
Upvote 0 Downvote
Ok thanks,

if it's really like that I'll consider using Cisco vpn client.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

pbxcomm
  • Locked
  • Question
CISCO VG450
Replies
1
Views
206
bdk76
bdk76
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
176
madwok
madwok
Jared R
  • Locked
  • Question
Cisco UC320W Paging Help
Replies
0
Views
192
Jared R
Jared R
Hayden09
  • Locked
  • Question
Cisco Sg-300 Flapping?
Replies
0
Views
183
Hayden09
Hayden09
JMarine0811
  • Locked
  • Question
CISCO VG450 Factory reset
Replies
1
Views
227
whykap
whykap

Part and Inventory Search

Sponsor

Back
Top