Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Pix VPN

Status
Not open for further replies.
kyokiyota

kyokiyota

Technical User
Nov 6, 2003
7
MX
Hello everyone:

I'm New.

I've a problem with a VPN between Pix 515 and cisco 827-4V ADSL.

The end point (827) has dynamic Ip and I Can't create the dynamic ipsec tunnel.

Can someone Helpme Please I'm desperate.

Here's the configuration:

Pix 515

access-list mty permit ip x.x.x.x 255.255.252.0 x.x.x.x 255.255.252.0

crypto ipsec transform-set DSL esp-des esp-sha-hmac
crypto dynamic-map lincoln_dsl 1 match address mty
crypto dynamic-map lincoln_dsl 1 set transform-set DSL

isakmp key xxxxxxxx address 0.0.0.0 netmask 0.0.0.0

isakmp policy 10 authentication pre-share
isakmp policy 10 encryption des
isakmp policy 10 hash sha
isakmp policy 10 group 1
isakmp policy 10 lifetime 86400


Router 827-4V

crypto isakmp policy 10
authentication pre-share
crypto isakmp key xxxxxxx address x.x.x.x 255.255.255.240
!
crypto ipsec security-association lifetime seconds 28800
!
crypto ipsec transform-set mty-mx esp-des esp-sha-hmac
!
crypto map mexico 50 ipsec-isakmp
set peer x.x.x.x
set transform-set mty-mx
match address 104

Thanks

Bye
 
Sort by date Sort by votes
Well it is exactly what I am doing but nothing happens.

 
Upvote 0 Downvote
No it is not...

crypto dynamic-map lincoln_dsl 1 match address mty

is not part of the configuration explained on the link.
 
Upvote 0 Downvote
HI.

Another option is using "Easy VPN Remote".
The pix will act as "VPN Server" and the 827 router as "VPN client".
This requires current OS versions on the devices.

It is not a better option than the regular one, but it is another alternative that you can choose.

Bye


Yizhar Hurwitz
 
Upvote 0 Downvote
That´s a good solution but the 827 doesn´t support easy VPN.

If someone has Dynamic VPN configurated it before on a Pix Please let me know.

Thanks a lot

Bye
 
Upvote 0 Downvote
Yizhar:

I´ve configurated easy VPN server on PIX and Easy VPN network-extension on the 827. I´ve the tunnel but i cant send or recive trafic on both sites.

What I'm Doing wrong?

Thanks a lot.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
266
intel233
intel233
ISDPCMAN
  • Locked
  • Question
RDP fails over VPN
Replies
1
Views
119
gkittelson
gkittelson
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
335
Shmid
Shmid
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
85
WhosYourDiffie
WhosYourDiffie
ITSUPPORTIT
  • Locked
  • Question
VPN from ASA 5510 and RV215W problem
Replies
0
Views
75
ITSUPPORTIT
ITSUPPORTIT

Part and Inventory Search

Sponsor

Back
Top