Multiple VPN session's

From: Jef (jef_at_risdata.com)
Date: 12/04/03 

Date: 4 Dec 2003 05:54:51 -0800

I have 3 locations whit a cisco 827 routers, they all connected to the
internet with a adsl connection.

Now i want to setup a al the locations with a vpn connection, i can
find anywhere a good configuration.

Here is the standard config.

!
version 12.1
no service pad
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
!
hostname ######
!
logging buffered 4096 debugging
aaa new-model
aaa authentication login default local-case
aaa authorization exec default local
aaa authorization network default local
enable secret 5 #####################
enable password 7 ############
!
username admin privilege 15 password 7 ###
username controle privilege 7 password 7 ####
!
!
!
!
clock timezone GMT 1
clock summer-time ## recurring last Sun Mar 1:00 last Sun Oct 1:00
ip subnet-zero
no ip source-route
no ip finger
no ip domain-lookup
ip name-server **.****.***.***
ip dhcp excluded-address 192.!
no ip bootp server
!
!
!
interface Ethernet0
 ip address
 ip access-group 102 in
 ip access-group 102 out
 no ip proxy-arp
 ip nat inside
 no ip route-cache
 no ip mroute-cache
 load-interval 30
 no keepalive
 no cdp enable
 hold-queue 100 out
!
interface ATM0
 no ip address
 no ip route-cache
 no ip mroute-cache
 load-interval 30
 no atm ilmi-keepalive
 pvc 0 0/35
  encapsulation aal5mux ppp dialer
  dialer pool-member 1
 !
 bundle-enable
 dsl operating-mode auto
 hold-queue 224 in
!
interface Dialer0
 ip address negotiated
 ip nat outside
 encapsulation ppp
 dialer pool 1
 dialer-group 1
 no peer default ip address
 no cdp enable
 ppp authentication pap callin
 ppp pap sent-username password 7
!
!
ip nat inside source list 101 interface Dialer0 overload
ip route 0.0.0.0 0.0.0.0 Dialer0 permanent
no ip http server
!
logging trap debugging
access-list 101 permit ip 192.168.50.0 0.0.0.255 any
access-list 101 deny tcp any any eq 139
access-list 101 deny tcp any any eq 137
access-list 101 deny udp any any eq netbios-ns
access-list 101 deny udp any any eq netbios-ss
access-list 101 deny ip 10.0.0.0 0.255.255.255 any
access-list 101 deny ip 172.16.0.0 0.15.255.255 any
access-list 101 deny ip 192.168.0.0 0.0.255.255 any
access-list 101 deny ip any host 255.255.255.255
dialer-list 1 protocol ip permit
no cdp run

^C
!
line con 0
 exec-timeout 0 0
 transport input none
 stopbits 1
line vty 0 3
 access-class 12 in
 exec-timeout 20 0
 password 7 14041C061C07252F21
 transport input telnet
line vty 4
 access-class 12 in
 exec-timeout 0 0
 password 7 0719351E1C5140202F
!
scheduler max-task-time 5000
endonfiguration for this

Relevant Pages

  • adding a pix to dual router setup
    ... interface FastEthernet0 ... access-list 1 permit 192.168.2.0 0.0.0.255 ... access-list 100 deny ip 192.168.10.0 0.0.0.255 any ...
    (comp.dcom.sys.cisco)
  • Re: Cisco 3725 not performing well with Comast?
    ... about 1.4mb/s from my dedicated host. ... access-list 1 permit 172.16.2.0 0.0.0.255 ... access-list 101 deny ip 192.168.0.0 0.0.0.255 any log ...
    (comp.dcom.sys.cisco)
  • Newbie and stuck!
    ... interface ATM0.1 point-to-point ... encapsulation aal5mux ppp dialer ... access-list 100 deny ip 127.0.0.0 0.255.255.255 any ...
    (comp.dcom.sys.cisco)
  • Re: Cisco 1760 router and VPN client Connection Issues
    ... crypto map fw1 client authentication list userauthenticate ... permit tcp 192.168.166.0 0.0.0.255 any eq 3101 ... deny ip any 127.0.0.0 0.255.255.255 log ...
    (comp.dcom.sys.cisco)
  • Re: Help on logging on my Soho 77
    ... access-list 100 deny ip 10.0.0.0 0.255.255.255 any ... access-list 100 deny ip host 85.33.96.176 host 85.33.96.176 ... access-list 100 permit ip host 89.186.68.6 any ...
    (comp.dcom.sys.cisco)