PIX 501 VPN

NewsGroups | Search | Tools

User Password

Lost Password?

comp.dcom.sys.cisco

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Yahoo!

Google

Windows Live

del.icio.us digg

digg

Netscape

Subject	Author	Date
PIX 501 VPN	rg	04-17-2008

Posted by rg on April 17, 2008, 7:51 am

If you were Registered and logged in, you could reply and use other advanced thread options

I have set up my ipsec vpn as followes. The lan subnet is 192.168.3.0. The
vpn subnet is 192.168.4.0. After sucessful vpn connection, I am not able
access machines on lan. What else would I need to do to have lan access?

Thanks in advance,

name 192.168.3.0 LAN

access-list outside_cryptomap_dyn_20 permit ip LAN 255.255.255.0 192.168.4.0
255.255.255.0

ip address inside 192.168.3.3 255.255.255.0

ip local pool ippool 192.168.4.1-192.168.4.254

nat (inside) 0 access-list outside_cryptomap_dyn_20
nat (inside) 1 0.0.0.0 0.0.0.0 0 0

crypto ipsec transform-set outside_set esp-des esp-md5-hmac
crypto dynamic-map outside_dyn_map 10 set transform-set outside_set
crypto map outside_map 10 ipsec-isakmp dynamic outside_dyn_map
crypto map outside_map interface outside
isakmp enable outside
isakmp identity address
isakmp nat-traversal 20
isakmp policy 10 authentication pre-share
isakmp policy 10 encryption des
isakmp policy 10 hash md5
isakmp policy 10 group 2
isakmp policy 10 lifetime 86400
vpngroup vpn3000 address-pool ippool
vpngroup vpn3000 dns-server 192.168.3.29
vpngroup vpn3000 default-domain masmid.com
vpngroup vpn3000 idle-time 1800
vpngroup vpn3000 password ********

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com