Client to site VPN

[aries58net]

E' possibile configurare una VPN client to site con un cisco 837 (IP statico) con "security bundle" in modo che gli utenti si autentichino su un server interno con IAS ....e se si , come ???

PS potrebbe essere cosi' ?(configurazione di un ASA 5505 ,con i debiti aggiustamenti si intende!!)

Codice: Seleziona tutto

   1. aaa-server PDC protocol radius  
   2. aaa-server PDC host x.x.x.x  
   3.  timeout 5  
   4.  key **********  
   5. group-policy RemoteAccess internal  
   6. group-policy RemoteAccess attributes  
   7.  dns-server value x.x.x.x  
   8.  vpn-tunnel-protocol IPSec   
   9. username admin password ********** encrypted privilege 0  
  10. username admin attributes  
  11.  vpn-group-policy RemoteAccess  
  12.    
  13. tunnel-group RemoteAccess type ipsec-ra  
  14. tunnel-group RemoteAccess general-attributes  
  15.  address-pool Vpnpool  
  16.  default-group-policy RemoteAccess  
  17. tunnel-group RemoteAccess ipsec-attributes  
  18.  pre-shared-key ********  
  19. tunnel-group XX type ipsec-ra  
  20. tunnel-group XX general-attributes  
  21.  address-pool Vpnpool  
  22.  authentication-server-group XDC  
  23. tunnel-group XX ipsec-attributes  
  24.  pre-shared-key **********  

TIA