forum.opennet.ru

Составление сообщения

Исходное сообщение

"Помогите чайнику настроить VPN"
Отправлено mvitalya84, 14-Янв-08 23:33

с помощью SDM я наворотил вот такую фигню:
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$qBxp$rofVnM51mK0ikfdN5uzwX/
!
aaa new-model
!
!
aaa authentication login sdm_vpn_xauth_ml_1 local
aaa authorization network sdm_vpn_group_ml_1 local
!
!
aaa session-id common
!
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp client configuration group BAZA
key 123
pool SDM_POOL_1
netmask 255.255.255.0
crypto isakmp profile sdm-ike-profile-1
   match identity group BAZA
   client authentication list sdm_vpn_xauth_ml_1
   isakmp authorization list sdm_vpn_group_ml_1
   client configuration address respond
   virtual-template 1
!
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
!
crypto ipsec profile SDM_Profile1
set transform-set ESP-3DES-SHA
set isakmp-profile sdm-ike-profile-1
!
!
!
!
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1 192.168.1.99
ip dhcp excluded-address 192.168.1.1 192.168.1.50
ip dhcp ping packets 5
!
ip dhcp pool LAN
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1
   domain-name Ovsyanoe
   dns-server 87.237.112.10 195.5.128.132
!
!
!
vpdn enable
!
vpdn-group 1
request-dialin
  protocol pppoe
!
!
!
username vitacom privilege 15 view root secret 5 $1$9KOz$VBLs8FpoGx1zwvAjq1aUO.
archive
log config
  hidekeys
!
!
!
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
no ip address
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 1
!
interface Virtual-Template1 type tunnel
ip unnumbered Vlan1
tunnel mode ipsec ipv4
tunnel protection ipsec profile SDM_Profile1
!
interface Vlan1
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1412
no ip mroute-cache
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
no ip mroute-cache
dialer pool 1
dialer-group 1
ppp authentication pap callin
ppp chap refuse
ppp ms-chap refuse
ppp ms-chap-v2 refuse
ppp pap sent-username ovss password 0 999100
!
ip local pool SDM_POOL_1 192.168.1.20 192.168.1.30
ip route 0.0.0.0 0.0.0.0 Dialer1
!
ip http server
no ip http secure-server
ip nat inside source list 1 interface Dialer1 overload
!
access-list 1 permit 192.168.1.0 0.0.0.255
dialer-list 1 protocol ip permit
но VPN не соединяется, что здесь не так?

Исходное сообщение
"Помогите чайнику настроить VPN" Отправлено mvitalya84, 14-Янв-08 23:33
с помощью SDM я наворотил вот такую фигню: version 12.4 no service pad service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname Router ! boot-start-marker boot-end-marker ! no logging buffered enable secret 5 $1$qBxp$rofVnM51mK0ikfdN5uzwX/ ! aaa new-model ! ! aaa authentication login sdm_vpn_xauth_ml_1 local aaa authorization network sdm_vpn_group_ml_1 local ! ! aaa session-id common ! ! crypto isakmp policy 1 encr 3des authentication pre-share group 2 ! crypto isakmp client configuration group BAZA key 123 pool SDM_POOL_1 netmask 255.255.255.0 crypto isakmp profile sdm-ike-profile-1 match identity group BAZA client authentication list sdm_vpn_xauth_ml_1 isakmp authorization list sdm_vpn_group_ml_1 client configuration address respond virtual-template 1 ! ! crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac ! crypto ipsec profile SDM_Profile1 set transform-set ESP-3DES-SHA set isakmp-profile sdm-ike-profile-1 ! ! ! ! ip cef no ip dhcp use vrf connected ip dhcp excluded-address 192.168.1.1 192.168.1.99 ip dhcp excluded-address 192.168.1.1 192.168.1.50 ip dhcp ping packets 5 ! ip dhcp pool LAN network 192.168.1.0 255.255.255.0 default-router 192.168.1.1 domain-name Ovsyanoe dns-server 87.237.112.10 195.5.128.132 ! ! ! vpdn enable ! vpdn-group 1 request-dialin protocol pppoe ! ! ! username vitacom privilege 15 view root secret 5 $1$9KOz$VBLs8FpoGx1zwvAjq1aUO. archive log config hidekeys ! ! ! ! ! interface FastEthernet0 ! interface FastEthernet1 ! interface FastEthernet2 ! interface FastEthernet3 ! interface FastEthernet4 no ip address duplex auto speed auto pppoe enable group global pppoe-client dial-pool-number 1 ! interface Virtual-Template1 type tunnel ip unnumbered Vlan1 tunnel mode ipsec ipv4 tunnel protection ipsec profile SDM_Profile1 ! interface Vlan1 ip address 192.168.1.1 255.255.255.0 ip nat inside ip virtual-reassembly ip tcp adjust-mss 1412 no ip mroute-cache ! interface Dialer1 ip address negotiated ip mtu 1492 ip nat outside ip virtual-reassembly encapsulation ppp no ip mroute-cache dialer pool 1 dialer-group 1 ppp authentication pap callin ppp chap refuse ppp ms-chap refuse ppp ms-chap-v2 refuse ppp pap sent-username ovss password 0 999100 ! ip local pool SDM_POOL_1 192.168.1.20 192.168.1.30 ip route 0.0.0.0 0.0.0.0 Dialer1 ! ip http server no ip http secure-server ip nat inside source list 1 interface Dialer1 overload ! access-list 1 permit 192.168.1.0 0.0.0.255 dialer-list 1 protocol ip permit но VPN не соединяется, что здесь не так?

Ваше сообщение

Имя*:

EMail:

Для отправки новых сообщений в текущей нити на email укажите знак ! перед адресом, например, !user@host.ru (!! - не показывать email).
Более тонкая настройка отправки ответов производится в профиле зарегистрированного участника форума.

Заголовок*:

Сообщение*:

>  с помощью SDM я наворотил вот такую фигню:

> version 12.4 
> no service pad 
> service timestamps debug datetime msec 
> service timestamps log datetime msec 
> no service password-encryption 
> !
> hostname Router 
> !
> boot-start-marker 
> boot-end-marker 
> !
> no logging buffered 
> enable secret 5 $1$qBxp$rofVnM51mK0ikfdN5uzwX/ 
> !
> aaa new-model 
> !
> !
> aaa authentication login sdm_vpn_xauth_ml_1 local 
> aaa authorization network sdm_vpn_group_ml_1 local 
> !
> !
> aaa session-id common 
> !
> !
> crypto isakmp policy 1 
>  encr 3des 
>  authentication pre-share 
>  group 2 
> !
> crypto isakmp client configuration group BAZA 
>  key 123 
>  pool SDM_POOL_1 
>  netmask 255.255.255.0 
> crypto isakmp profile sdm-ike-profile-1 
>    match identity group BAZA 
>    client authentication list sdm_vpn_xauth_ml_1 
>    isakmp authorization list sdm_vpn_group_ml_1 
>    client configuration address respond 
>    virtual-template 1 
> !
> !
> crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac 
> !
> crypto ipsec profile SDM_Profile1 
>  set transform-set ESP-3DES-SHA 
>  set isakmp-profile sdm-ike-profile-1 
> !
> !
> !
> !
> ip cef 
> no ip dhcp use vrf connected 
> ip dhcp excluded-address 192.168.1.1 192.168.1.99 
> ip dhcp excluded-address 192.168.1.1 192.168.1.50 
> ip dhcp ping packets 5 
> !
> ip dhcp pool LAN 
>    network 192.168.1.0 255.255.255.0 
>    default-router 192.168.1.1 
>    domain-name Ovsyanoe 
>    dns-server 87.237.112.10 195.5.128.132 
> !
> !
> !
> vpdn enable 
> !
> vpdn-group 1 
>  request-dialin 
>   protocol pppoe 
> !
> !
> !
> username vitacom privilege 15 view root secret 5 $1$9KOz$VBLs8FpoGx1zwvAjq1aUO.
> archive 
>  log config 
>   hidekeys 
> !
> !
> !
> !
> !
> interface FastEthernet0 
> !
> interface FastEthernet1 
> !
> interface FastEthernet2 
> !
> interface FastEthernet3 
> !
> interface FastEthernet4 
>  no ip address 
>  duplex auto 
>  speed auto 
>  pppoe enable group global 
>  pppoe-client dial-pool-number 1 
> !
> interface Virtual-Template1 type tunnel 
>  ip unnumbered Vlan1 
>  tunnel mode ipsec ipv4 
>  tunnel protection ipsec profile SDM_Profile1 
> !
> interface Vlan1 
>  ip address 192.168.1.1 255.255.255.0 
>  ip nat inside 
>  ip virtual-reassembly 
>  ip tcp adjust-mss 1412 
>  no ip mroute-cache 
> !
> interface Dialer1 
>  ip address negotiated 
>  ip mtu 1492 
>  ip nat outside 
>  ip virtual-reassembly 
>  encapsulation ppp 
>  no ip mroute-cache 
>  dialer pool 1 
>  dialer-group 1 
>  ppp authentication pap callin 
>  ppp chap refuse 
>  ppp ms-chap refuse 
>  ppp ms-chap-v2 refuse 
>  ppp pap sent-username ovss password 0 999100 
> !
> ip local pool SDM_POOL_1 192.168.1.20 192.168.1.30 
> ip route 0.0.0.0 0.0.0.0 Dialer1 
> !
> ip http server 
> no ip http secure-server 
> ip nat inside source list 1 interface Dialer1 overload 
> !
> access-list 1 permit 192.168.1.0 0.0.0.255 
> dialer-list 1 protocol ip permit

> но VPN не соединяется, что здесь не так?

При общении не допускается: неуважительное отношение к собеседнику, хамство, унизительное обращение, ненормативная лексика, переход на личности, агрессивное поведение, обесценивание собеседника, провоцирование флейма голословными и заведомо ложными заявлениями. Не отвечайте на сообщения, явно нарушающие правила - удаляются не только сами нарушения, но и все ответы на них. Лог модерирования.

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру