Ciao ragazzi,
mi complimento con questo forum perche' e' molto interessante.
Da quando ho un router cisco, qui ho trovato un aiuto enorme per la configurazione!
Ora pero' ho bisogno che qualcuno mi aiuti, perche non riesco a capire l'errore!!!
Ho configurato il mio SOHO97 in modo tale che possa accettare connessioni VPN, e con il programma CISCO VPN client mi connetto al gruppo e inserisco le credenziali!!!
Entro nella rete con 'IP da me specificato, ma il gateway risulta essere uguale al mio indirizzo IP, quindi sono isolato!!!
Come posso risolvere??????
Grazie ragazzi!!!!
P.S. The Irish sei molto bravo!!!!!! ho letto molti dei tuoi topic!!!!
Ecco la mia attuale conf:
version 12.4
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname soho97
!
boot-start-marker
boot-end-marker
!
memory-size iomem 5
enable secret 5 $1$c.a0$dVCF/Th2ndPDwxU4YKNfo1
!
aaa new-model
!
!
aaa authentication login userauthen local
aaa authorization network groupauthor local
!
aaa session-id common
!
resource policy
!
ip subnet-zero
ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 10.10.10.2
ip dhcp excluded-address 10.10.10.4
!
ip dhcp pool CLIENT
import all
network 10.10.10.0 255.255.255.0
default-router 10.10.10.1
dns-server 193.70.192.25 193.70.152.25
lease 0 2
!
!
ip name-server 193.70.192.25
ip name-server 193.70.152.25
!
!
!
username soho97 password 7 001406050752060F0E
username CRWS_Sangeetha privilege 15 password 7 100A585D3246142A480B7B24170D23347A43504E5754040F09
username CRWS_Santhosh privilege 15 password 7 09081F4D2E5411334F035525180138326476475F42515601080E
username CRWS_Bijoy privilege 15 password 7 03400A4F315E276D0A06480A24371B0D5D797974716A627744
!
!
!
crypto isakmp policy 3
encr 3des
authentication pre-share
group 2
!
crypto isakmp policy 10
hash md5
authentication pre-share
!
crypto isakmp client configuration group 800client
key cisco123
dns 193.70.192.25
pool ippool
!
!
crypto ipsec transform-set myset esp-3des esp-sha-hmac
!
crypto dynamic-map dynmap 10
set transform-set myset
!
!
crypto map clientmap client authentication list userauthen
crypto map clientmap isakmp authorization list groupauthor
crypto map clientmap client configuration address respond
crypto map clientmap 10 ipsec-isakmp dynamic dynmap
!
!
!
interface Ethernet0
ip address 10.10.10.1 255.255.255.0
ip nat inside
ip tcp adjust-mss 1452
hold-queue 100 out
!
interface ATM0
no ip address
atm vc-per-vp 64
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
pppoe-client dial-pool-number 1
!
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer remote-name redback
dialer-group 1
ppp authentication pap chap callin
ppp chap hostname XXXXXXXXX
ppp chap password 7 XXXXXXXXX
ppp pap sent-username XXXXXXXXXX password 7 XXXXXXXX
crypto map clientmap
!
ip local pool ippool 10.10.10.50
ip default-gateway 10.10.10.1
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip http server
no ip http secure-server
!
ip nat inside source route-map nonat interface Dialer1 overload
ip nat inside source static tcp 10.10.10.4 3389 interface Dialer1 3389
ip nat inside source static tcp 10.10.10.2 5900 interface Dialer1 5900
!
access-list 102 permit ip 10.10.10.0 0.0.0.255 any
dialer-list 1 protocol ip permit
route-map nonat permit 10
match ip address 102
!
!
control-plane
!
!
line con 0
exec-timeout 120 0
no modem enable
stopbits 1
line aux 0
line vty 0 4
exec-timeout 120 0
length 0
!
scheduler max-task-time 5000
end
SOHO 97 e VPN
Moderatore: Federico.Lagni
