Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
0
Helpful
1
Replies

Replacing 1720 with ASA5505, Dynamic VPN Issue

tromblyj1
Level 1
Level 1

‎04-09-2008 11:44 AM - edited ‎02-21-2020 03:40 PM

I have a failing 1720 router that is the center-point to a vpn with two dynamic 1720 routers connecting to it. It also is supporting PPTP VPN connections but I am planning on replacing those with Cisco VPN Software clients.

My problem is with the two dynamic VPN's. I am unable to connect them to my newly configured ASA5505, because the commands have changed and I can no longer specify no-xauth with my pre-shared key. I need help.

When I enter my pre-shared key command it ends up in the tunnel-group DefaultRAGroup, which is fine, but my remote routers get stuck at XAUTH. I need xauth obviously for the remote VPN clients to work, and I want to ignore XAUTH for the two dynamic 1720 routers that use the preshared key.

I have attached the important part of the configs.

Labels:
Preview file
2 KB
0 Helpful
1 Reply 1

vkapoor5
Level 5
Level 5

‎04-15-2008 10:09 AM

This sample configuration shows how to set up the remote access VPN connection between a Cisco VPN Client (4.x for Windows) and the PIX 500 Series Security Appliance 7.x. The remote VPN Client user autheticates against the Active Directory using a Microsoft Windows 2003 Internet Authentication Service (IAS) RADIUS server.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806de37e.shtml

0 Helpful
Customers Also Viewed These Support Documents