Pagina 1 di 1

Script config VPN Client IPsec su PIX 6.3.x

Inviato: mer 13 ago , 2008 4:57 pm
da Wizard

Codice: Seleziona tutto

username remoto01 password gent875n privilege 3
username remoto02 password int863%h privilege 3
username remoto03 password sav3%k6n privilege 3
username remoto04 password tre478v0 privilege 3
username remoto05 password 97hbyrc8 privilege 3

vpngroup remote-vpn password 098pinhyndkwuds%&%

ip local pool VPN-CLI-POOL 192.168.25.200-192.168.25.210

vpngroup remote-vpn address-pool VPN-CLI-POOL

isakmp policy 20 authen pre-share
isakmp policy 20 encrypt 3des
isakmp policy 20 hash md5
isakmp policy 20 group 2
isakmp enable outside

access-list SPLIT-ACL permit ip 192.168.25.0 255.255.255.0  any
access-list NAT0 line 1 permit ip 192.168.25.0 255.255.255.0  192.168.25.192 255.255.255.224 

nat (inside) 0 access-list NAT0

access-list outside_cryptomap_dyn_20 permit ip any  192.168.25.192 255.255.255.224 

crypto ipsec transform-set VPN-CLIENT-SET esp-aes esp-sha-hmac 

crypto dynamic-map outside_dyn_map 20 match address outside_cryptomap_dyn_20
crypto dynamic-map outside_dyn_map 20 set transform-set VPN-CLIENT-SET
crypto dynamic-map outside_dyn_map 20 set security-association lifetime seconds 28800 kilobytes 4608000
crypto map outside_map 65535 ipsec-isakmp dynamic outside_dyn_map
crypto map outside_map client  authentication LOCAL
crypto map outside_map interface outside

vpngroup remote-vpn split-tunnel SPLIT-ACL

sysopt connection permit-ipsec

isakmp nat-t 20