Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How to setup vpn server on 1604 router 1

Status
Not open for further replies.
UNIX72

UNIX72

IS-IT--Management
Sep 8, 2000
403
0
0
US
Currently i have a vpn server on a windows2000 machine. I want to move it to the cisco 1604 router. Does anybody know how to configure the router for vpn, thanks
 
Sort by date Sort by votes
I set it up using a 2621 running 12.3 IOS with the Firewall with Ipsec 3des and I used the freeware taccacs+ server for unix. Cisco has a client package that you have to install. Be carefull to run the sp5 on NT immediatly after installation of the Cisco VPN client (before rebooting!). You do not need the taccacs+ server if you are going to use the same shared key for all of the vpn clients but that is really not practical. The scary part is the client package has the tendancy to crack nt kernels (had no problem with 95 & 98 machines).
 
Upvote 0 Downvote
Thanks n2messiah for the NT info because we have alot remote nt users.
 
Upvote 0 Downvote
Does anybody know where i could get some information on 1604 vpn setup, thanks
 
Upvote 0 Downvote
I am assuming that you are running with the firewall and have 3des and ipsec on your router. The client is available on their websight and costs about $250 dollars for 100 seats.


========================
!define isakmp policy
crypto isakmp policy 1
encryption 3des
authentication pre-share
!define preshrared key for vpn client
crypto isakmp key PRESHARED_KEY_PASSWORD address 0.0.0.0 0.0.0.0
!
!
crypto isakmp client configuration address-pool local vpnpool
!
!
crypto ipsec transform-set trans1 esp-3des esp-sha-hmac
!
! The dynamic map is for vpn clients
crypto dynamic-map dynmap 10
set transform-set trans1
!
!
crypto map intmap client configuration address initiate
crypto map intmap client configuration address respond
crypto map intmap 10 ipsec-isakmp dynamic dynmap
!
!
!
!
interface FastEthernet0/0
description connected to EthernetLAN
ip address INTERNAL_IP_RANGE YOUR_SUBNET_INFO
no ip directed-broadcast
duplex auto
speed auto
!
interface FastEthernet0/1
description connected to Internet
ip address INTERNET_IP_RANGE INTERNET_RANGE_SUBNET
ip access-group 101 in
ip inspect FastEthernet_0_0 out
no ip directed-broadcast
duplex auto
speed auto
!
ip classless
! define an ip pool for your vpn client
ip local pool mypool SELECT_NON_ROUTABLE_IP_RANGE_FOR_VPN_LOWER SELECT_NON_ROUTABLE_IP_RANGE_FOR_VPN_UPPER
!
!
access-list 101 remark *** for IPSEC traffic ***
access-list 101 permit esp any any
access-list 101 permit ahp any any
access-list 101 permit udp any any eq isakmp
access-list 101 remark *** traffic from vpn clients***
access-list 101 permit NON_ROUTABLE_IP_RANGE_FOR_VPN NON_ROUTABLE_IP_RANGE_SUBNET INTERNAL_IP_RANGE YOUR_SUBNET_INFO
access-list 101 remark *** traffic from vpn clients***




 
Upvote 0 Downvote
I don't have a solution, but just inquiring about how you setup your VPN service on a MS Windows 2000 Server?

Thanks.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
169
sircles
sircles
teknance
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
305
GlobeTrekkerGal
GlobeTrekkerGal
F
  • Question
some IP Phone not working over site-to-site OpenVPN, packets modified on other side of tunnel
Replies
0
Views
1K
FrankSider12
F
sarahz2
  • Question
Best vpn safe and fast
Replies
4
Views
193
GlobeTrekkerGal
GlobeTrekkerGal
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
125
Joon Smith
Joon Smith

Part and Inventory Search

Sponsor

Back
Top