santichuit
IS-IT--Management
Hi,I'm Santiago from Israel. I Studied CCNA but i have not done the test yet...anyways,the VPN subject is over CCNA goals so i need help to configure it.
I've configured a VPDN at my work's 857 Cisco. Everything runned good only one thing not => The Internet.
I've read about some other people that had the same problem and I heard something about split tunneling.
Next is my 857 Conf:
#######################################################
Building configuration...
Current configuration : 8856 bytes
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname ***************
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
enable secret 5 **************************
!
aaa new-model
!
!
aaa authentication ppp default local
!
aaa session-id common
!
resource policy
!
ip dhcp use vrf connected
ip dhcp use vrf remote
ip dhcp excluded-address 192.168.123.254
ip dhcp excluded-address 192.168.123.1 192.168.123.99
ip dhcp excluded-address 192.168.123.151 192.168.123.253
!
ip dhcp pool sdm-pool
import all
network 192.168.123.0 255.255.255.0
default-router 192.168.123.254
dns-server 194.90.1.5
lease 0 2
!
!
ip cef
no ip domain lookup
ip domain name yourdomain.com
vpdn enable
!
vpdn-group VPN
! Default PPTP VPDN group
accept-dialin
protocol pptp
virtual-template 1
!
!
!
interface ATM0
description $ES_WAN$
no ip address
atm ilmi-keepalive
pvc 8/48
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
hold-queue 224 in
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Virtual-Template1
ip unnumbered Vlan1
peer default ip address pool vpnpool
ppp encrypt mppe auto required
ppp authentication ms-chap ms-chap-v2
!
interface Vlan1
description LOCAL LAN
ip address 192.168.123.254 255.255.255.0
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
!
interface Dialer0
no ip address
no cdp enable
!
interface Dialer1
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer string 8,48
no cdp enable
ppp pap sent-username ********* password 7 **************
########################################################
From the things I've heard, it seems the solution must be easy.
Can anybody help me?
Thanks a LOT!
I've configured a VPDN at my work's 857 Cisco. Everything runned good only one thing not => The Internet.
I've read about some other people that had the same problem and I heard something about split tunneling.
Next is my 857 Conf:
#######################################################
Building configuration...
Current configuration : 8856 bytes
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname ***************
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
enable secret 5 **************************
!
aaa new-model
!
!
aaa authentication ppp default local
!
aaa session-id common
!
resource policy
!
ip dhcp use vrf connected
ip dhcp use vrf remote
ip dhcp excluded-address 192.168.123.254
ip dhcp excluded-address 192.168.123.1 192.168.123.99
ip dhcp excluded-address 192.168.123.151 192.168.123.253
!
ip dhcp pool sdm-pool
import all
network 192.168.123.0 255.255.255.0
default-router 192.168.123.254
dns-server 194.90.1.5
lease 0 2
!
!
ip cef
no ip domain lookup
ip domain name yourdomain.com
vpdn enable
!
vpdn-group VPN
! Default PPTP VPDN group
accept-dialin
protocol pptp
virtual-template 1
!
!
!
interface ATM0
description $ES_WAN$
no ip address
atm ilmi-keepalive
pvc 8/48
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
hold-queue 224 in
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Virtual-Template1
ip unnumbered Vlan1
peer default ip address pool vpnpool
ppp encrypt mppe auto required
ppp authentication ms-chap ms-chap-v2
!
interface Vlan1
description LOCAL LAN
ip address 192.168.123.254 255.255.255.0
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
!
interface Dialer0
no ip address
no cdp enable
!
interface Dialer1
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer string 8,48
no cdp enable
ppp pap sent-username ********* password 7 **************
########################################################
From the things I've heard, it seems the solution must be easy.
Can anybody help me?
Thanks a LOT!
