Codice: Seleziona tutto
username remoto01 password gent875n privilege 3
username remoto02 password int863%h privilege 3
username remoto03 password sav3%k6n privilege 3
username remoto04 password tre478v0 privilege 3
username remoto05 password 97hbyrc8 privilege 3
vpngroup remote-vpn password 098pinhyndkwuds%&%
ip local pool VPN-CLI-POOL 192.168.25.200-192.168.25.210
vpngroup remote-vpn address-pool VPN-CLI-POOL
isakmp policy 20 authen pre-share
isakmp policy 20 encrypt 3des
isakmp policy 20 hash md5
isakmp policy 20 group 2
isakmp enable outside
access-list SPLIT-ACL permit ip 192.168.25.0 255.255.255.0 any
access-list NAT0 line 1 permit ip 192.168.25.0 255.255.255.0 192.168.25.192 255.255.255.224
nat (inside) 0 access-list NAT0
access-list outside_cryptomap_dyn_20 permit ip any 192.168.25.192 255.255.255.224
crypto ipsec transform-set VPN-CLIENT-SET esp-aes esp-sha-hmac
crypto dynamic-map outside_dyn_map 20 match address outside_cryptomap_dyn_20
crypto dynamic-map outside_dyn_map 20 set transform-set VPN-CLIENT-SET
crypto dynamic-map outside_dyn_map 20 set security-association lifetime seconds 28800 kilobytes 4608000
crypto map outside_map 65535 ipsec-isakmp dynamic outside_dyn_map
crypto map outside_map client authentication LOCAL
crypto map outside_map interface outside
vpngroup remote-vpn split-tunnel SPLIT-ACL
sysopt connection permit-ipsec
isakmp nat-t 20