I have some material coming, but I would like just to see if this works. I have a Cisco 2621 router with a VPN module. I have set if up as best as I currently can, but still, I cant make a connection. What am I missing?
Config:
aaa new-model
aaa authorization network VPN-group local
enable secret xxxx.
enable password xxx
!
username xxx password xxx
ip subnet-zero
!
!
!
!
crypto isakmp policy 1
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp client configuration address-pool local ippool
!
!
crypto ipsec transform-set CUSTOMER-VPN esp-3des esp-sha-hmac
!
crypto dynamic-map CUSTOMER-VPN 10
set transform-set CUSTOMER-VPN
!
crypto dynamic-map test 10
!
!
crypto map VPNCRYPTOMAP client authentication list user
crypto map VPNCRYPTOMAP isakmp authorization list VPN-group
crypto map VPNCRYPTOMAP client configuration address respond
!
crypto map test client authentication list VPN-group
crypto map test client configuration address respond
!
call rsvp-sync
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 172.16.4.65 255.255.255.192
ip nat inside
duplex auto
speed auto
!
interface Serial0/0
no ip address
shutdown
no fair-queue
!
interface FastEthernet0/1
description outside interface
ip address 64.45.175.yyy 255.255.255.248 secondary
ip address 64.45.175.xxx 255.255.255.248
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
no ip mroute-cache
speed auto
half-duplex
no cdp enable
!
interface Serial0/1
no ip address
shutdown
!
ip local pool ippool 172.16.4.5 172.16.4.50