ip address outside this_ip 255.255.255.248
access-list 90 permit ip any any


names
name 192.168.80.0 VEC

access-list 90 permit ip host 172.24.1.1 VEC 255.255.255.0 
access-list 90 permit ip 172.24.80.0 255.255.255.0 VEC 255.255.255.0 
access-list 90 permit ip 172.24.81.0 255.255.255.0 VEC 255.255.255.0 
access-list outside_cryptomap_20 deny ip 172.24.80.0 255.255.255.0 VEC 255.255.255.0 
access-list outside_cryptomap_20 deny ip 172.24.81.0 255.255.255.0 VEC 255.255.255.0 


nat (inside) 0 access-list 90


sysopt connection permit-ipsec
crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac 
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac 
crypto map outside_map 20 ipsec-isakmp
crypto map outside_map 20 match address outside_cryptomap_20
//unable to mention address 90 here..


crypto map outside_map 20 set peer peer_ip
crypto map outside_map 20 set transform-set ESP-3DES-MD5
crypto map outside_map interface outside
isakmp enable outside
isakmp key ltv1234 address peer_ip netmask 255.255.255.255 no-xauth no-config-mode 
isakmp policy 20 authentication pre-share
isakmp policy 20 encryption 3des
isakmp policy 20 hash md5
isakmp policy 20 group 2
isakmp policy 20 lifetime 86400