royalblues Mon, 04/02/2007 - 01:28
User Badges:
  • Green, 3000 points or more

Brad,


It depends on the database which you will be referring to for authentication


The usernames need to be defined on the global configuration mode if you are planning to authenticate the users via the local router database.


These can also be directed to a TACACS server


HTH, rate if it does

Narayan

bradlesliect Mon, 04/02/2007 - 01:41
User Badges:

This is what my current config looks like


!

crypto isakmp policy 1

hash md5

authentication pre-share

group 2

crypto isakmp key adsldynvpn address PIX2 no-xauth

crypto isakmp key adsldynvpn address PIX1 no-xauth

!

!

crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac

crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac

!

crypto map SDM_CMAP_1 1 ipsec-isakmp

description Tunnel toPIX1

set peer PIX1

set transform-set ESP-3DES-MD5

match address 100

crypto map SDM_CMAP_1 2 ipsec-isakmp

description Tunnel toPIX2

set peer PIX2

set transform-set ESP-3DES-MD5

match address 103

!


....where would the username be?

royalblues Mon, 04/02/2007 - 02:35
User Badges:
  • Green, 3000 points or more

Brad,


What you have is an IPSEC VPN. It would mostly be a site to site VPN.


All you require in this is the key which already exists in the Config.


username & passswords are not configured in these type of VPNS


HTH, rate if it does

Narayan

bradlesliect Mon, 04/02/2007 - 03:01
User Badges:

OK.....


I need to configure a client's ADSL router to make a VPN connection to their ISA server.


How would I do that?

Actions

This Discussion