• cabling news
  Newsletter Industry News Our Site News
• help
  Home Cabling Guide Cabling FAQ Free Helpdesk Forums Learn Cabling
• resources
  Color Codes Pin Layouts Links E-books Bookstore Online Tools Downloads
• this site
  Home Page Contact us Advertise Here Link to us
• this page
  Bookmark It! Print
• +

Cisco Systems VPN with IPSec

Bookmark this page:   Yahoo!   Google   Windows Live   del.icio.us   digg   Netscape

Subject Author Date VPN with IPSec Scooty 07-23-07

Posted by Scooty on July 23, 2007, 2:48 am Please log in for more thread options Hi all A quick background. We have many sites that use IPSec to talk back to our ISP's network which is then passed into our network. This is part of a managed WAN solution where I have no visibility over the routers. We also have a Nortel Contivity VPN client for our remote users. I have been told I can use this Contivity VPN username and password on a router to establish a connection back to our network via the ISP's network >From one of the sites I have a copy of the config with some info removed to protect the innocent, namely the ISP :-) <--------> crypto isakmp policy 10 encr 3des hash md5 authentication pre-share group 2 crypto isakmp key 0 <key> address <address> <----- I am assuming this address is the same as the Contivity IP address used for the VPN client ! ! crypto ipsec transform-set aff-ts esp-3des esp-md5-hmac ! crypto map aff-cm 10 ipsec-isakmp set peer <address> <---- I am assuming this address is the same as the Contivity IP address used for the VPN client set security-association idle-time 28800 set transform-set aff-ts match address aff-al ! <-----> The crypto map aff-cm is part of the Dialer so do I need to create a another dialer for this or would I just add it to my existing dialer? Now I know the IP address the contivity VPN client uses and I know the ISAKMP key, I am just unsure how to bolt it all together. I am using my home router as a test and this is a Cisco SOHO 78H (SB107) Effectively I want a permanent connection established between my router and the ISP's network, but I don't want to affect my current connection. I am assuming I will need to setup some static routes to my work LAN Any advice would be most welcome Scott

Similar Threads	Posted
Failing Phase2 Auth - IPSec - All IPSec SA proposals found unacceptable	November 26, 2008, 7:37 pm
IPsec within L2TP over IPsec - PIX.	July 23, 2006, 6:14 pm
4506 acting as LNS with L2TP over IPsec and IPsec over L2TP.	February 15, 2007, 5:47 pm
4506 acting as LNS with L2TP over IPsec and IPsec over L2TP.	February 20, 2007, 4:00 am
IPSec	October 4, 2005, 3:10 pm
IPSec VPN through NAT	January 24, 2006, 4:19 pm
QoS and IPSEC	February 10, 2006, 4:24 am
RSH over IPSEC VPN	March 14, 2006, 9:25 am
IPSEC to PIX 515	April 14, 2006, 9:46 am
PIX 506 IPSEC	June 18, 2005, 7:01 am
VPN with IPSec	July 23, 2007, 2:48 am
PAT & IPSEC	August 15, 2007, 3:47 pm
IPSEC and IKE	October 10, 2007, 8:52 am
VPN- IPsec and IKE	October 14, 2007, 10:51 am
ipsec vpn to pix 500	August 2, 2008, 5:36 pm

Contact Us | Privacy Policy