IPsec VPN client Configuration and logging.

Blog

Aug 11, 2011 1:31 AM
Aug 11th, 2011

Hello Everyone. Hope you enjoyed reading the LAN to LAN tunnel blog series. Now lets read some interesting facts about Remote access VPN.

For this I have a computer somewhere on the internet using VPN client. Then Head end device an IOS router where this client will be terminating and behind router I have 10.1.1.0/24 local subnet that we want to access.

Please refer the following Diagram for more details-------

1.jpg

Now lets Look into some of the configuration aspects----

2.jpg

3.jpg

4.jpg

Now we will talk about the VPN client itself----

Software VPN Client Configuration

5.jpg

Add All the details like connection entry, Description, Host, Name, Password etc, as configured on hand end box.

To connect, double click on the Connection Entry as shown up in the screen shot.

Cisco IOS Debugs: Phase I Negotiation

Please refer the detailed debugs and step by step tunnel creation (Phase 1 and Phase 2)

6.jpg

7.jpg

8.jpg

9.jpg

Cisco IOS Debugs: Phase I.5 Negotiation (Basically X Auth )

10.jpg

11.jpg

12.jpg

13.jpg

Cisco IOS Debugs: Phase 2 Negotiation

14.jpg

15.jpg

16.jpg

17.jpg

That’s all from my side. In my next blog I will be discussing the VPN Client logs followed by some real time scenarios.

Please leave your comments, inputs and feedback and also let me know what do you want to see in future blogs.

Looking forward to your participation.

Appreciate your time.

Average Rating: 5 (3 ratings)

Comments

salkatib Sun, 08/14/2011 - 14:05

Thanks, nice example.

screenshots could've been bigger so it's more readable.

jportugu Sat, 08/20/2011 - 08:49

Thanks for this great contribution.

About the screenshots, just click on any screenshot and it will become bigger.

Lisa Latour Wed, 08/31/2011 - 11:55

Hello - Thanks Saleh and Javier...

We are working with the vendor to also change the compression they use on the Images so they do not appear so blurry. Stay tuned!

edwardre1 Mon, 09/12/2011 - 16:50

Hello,

Thanks for the interesting post. I am right in saying that your vpn session does not use a certificate? If not how would you go about doing so at the Router's end?

thanks

Ed

Actions

Login or Register to take actions

This Blog

Posted August 11, 2011 at 1:31 AM
Stats:

Related Content

Blogs Leaderboard