From: Aaron DuShey (adushey@xxxxxxxxxxx)
Date: Fri Aug 23 2002 - 01:48:16 GMT-3
I have the above configuration and followed to the tee the tech note:
<javascript:newWin('http://www.cisco.com/warp/customer/471/ios-unity.htm
l')> http://www.cisco.com/warp/customer/471/ios-unity.html
I can now connect, prompted for username/password, get assigned an
address and my client says its encrypting the correct packets, but none
are returning.
Any ideas? I am wondering if I have to do anything with NAT here as I
have before but nothing I see in the tech notes say anything about this.
Great notes for PIX's not so great for IOS. I've also turned off NAT and
the firewall temporarily and am getting the same result. Does anyone
have this working?
The IOS version is 12.2.11T1
Here is part of the config-keys are there but removed for security
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp client configuration group ******
pool vpnpool
acl 150
crypto ipsec transform-set remotes esp-3des esp-sha-hmac
!
crypto dynamic-map dyn-remotes 1
set transform-set remotes
!
!
crypto map remotes client authentication list vpnauth
crypto map remotes isakmp authorization list groupauthor
crypto map remotes client configuration address initiate
crypto map remotes client configuration address respond
crypto map remotes 1 ipsec-isakmp dynamic dyn-remotes
Thanks in advance for the help
Aaron
This archive was generated by hypermail 2.1.4 : Sat Sep 07 2002 - 19:48:34 GMT-3