10-28-2008 08:01 PM
Hi I want to setup VPN using RADIUS (WIndows). We have a 256Kbps dedicate internet link terminated on the serial connection of our 1841 router. I want to enable clients to VPN in our network and use the network resources.
Need help in setting this up. What will I need e.g updated IOS or module etc and the configd. Below is the show version of my router:
Cisco IOS Software, 1841 Software (C1841-BROADBAND-M), Version 12.4(2)XA, RELEASE SOFTWARE (fc3)Synched to technology version 12.4(3.9)T
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by Cisco Systems, Inc.
Compiled Sun 09-Oct-05 23:35 by ealyon
ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)
ROM: Cisco IOS Software, 1841 Software (C1841-BROADBAND-M), Version 12.4(2)XA, R
ELEASE SOFTWARE (fc3)
SPC-NABUA uptime is 3 weeks, 1 day, 1 hour, 4 minutes
System returned to ROM by power-on
System image file is "flash:c1841-broadband-mz.124-2.XA.bin"
Cisco 1841 (revision 6.0) with 115712K/15360K bytes of memory.
Processor board ID FHK1114121H
2 FastEthernet interfaces
1 Serial(sync/async) interface
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
31488K bytes of ATA CompactFlash (Read/Write)
Configuration register is 0x2102
10-28-2008 09:20 PM
Hi Usaia,
To be able to set up RADIUS-based AAA and IPSec VPNs, you will need to upgrade your IOS that contains one of the following strings in the IOS file name:
advsecurityk9
advipservicesk9
or
adventerprisek9
Check this link out:
http://tools.cisco.com/ITDIT/CFN/jsp/index.jsp
Cheers:
Istvan
10-30-2008 03:35 PM
Have done the upgrade:
Cisco IOS Software, 1841 Software (C1841-ADVSECURITYK9-M), Version 12.4(21a), RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2008 by Cisco Systems, Inc.
Compiled Mon 29-Sep-08 14:29 by prod_rel_team
ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)
SPC-NABUA uptime is 16 hours, 7 minutes
System returned to ROM by reload at 06:36:13 UTC Thu Oct 30 2008
System image file is "flash:c1841-broadband-mz.124-2.XA.bin"
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
Cisco 1841 (revision 6.0) with 115712K/15360K bytes of memory.
Processor board ID FHK1114121H
2 FastEthernet interfaces
1 Serial(sync/async) interface
1 Virtual Private Network (VPN) Module
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
31488K bytes of ATA CompactFlash (Read/Write)
Configuration register is 0x2102
Any configuration sample will do. Anyway here is an ISA box between the router and the RADIUS server.
10-30-2008 11:30 PM
I suggest you a link:
http://www.cisco.com/en/US/docs/ios/security/configuration/guide/12_4/sec_12_4_book.html
Here you can find detailed explanations on how to configure AAA (for Radius or Tacacs+) and IPSec as well.
Cheers:
Istvan
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: