Dynamic maps are used on the PIX Firewall when the IP address of an incoming client connection is not known. Clients can use any global IP address from any location to connect to the PIX. Cisco VPN clients and EZVPN users are considered dynamic clients.
To configure a dynamic map on PIX 7.x, perform these steps:
Define the transform set to be used during IPSec security association (SA) negotiation. Specify Data Encryption Standard (DES), Triple DES (3DES) or Advanced Encryption Standard (AES) as the encryption algorithm: