here's my config
my pix is connected acting as a easy vpn server with a webserver connected on the inside interface. the inside interface ip address is 10.1.1.1/24 and the ip address of the web server is 10.1.1.2/24.
the pix outside interface is connected to a 3640 router acting as a easy vpn client.
pix outside interface ip is 1.1.1.1/24 and the interface ip of the router is 1.1.1.2/24.
the 3640's other ethernet interface ip is 20.1.1.1/24 connected a host on 20.1.1.2/24.
i am using pix ios 7.1.2 and 3640 router is having 12.4(5) secure ios.
username cisco password cisco
crypto dynamic dynmap cisco 10 set transform-set cisco
crypto ipsec transform-set cisco esp-des esp-sha-hmac
crypto map cisco ipsec-isakmp dynamic dynmap
crypto map cisco interface outside
isakmp identity address
isakmp enable outside
isakmp policy 1 authentication pre-share
isakmp policy 1 encryption 3des
isakmp policy 1 hash md5
isakmp policy 1 group 2
isakmp policy 1 lifetime 86400
tunnel-group cisco type ipsec-ra
tunnel-group cisco general-attributes
authentication-server-group LOCAL
default-group policy cisco
tunnel-group cisco ipsec-attributes
pre-shared-key cisco
group-policy cisco internal
group-policy attributes
nem enable
password-storage enable
config on the 3640 router
crypto ipsec client ezvpn cisco
group cisco key cisco
peer 1.1.1.1
mode network-extension mode
username cisco pass cisco
int e0/0
ip add 1.1.1.2 255.255.255.0
crypto ipsec client ezvpn cisco outside
no shutdown
int e0/1
ip add 20.1.1.1 255.255.255.0
no shutdown
crypto ipsec client ezvpn cisco inside
the router is all the time prompted for
crypto ipsec client ezvpn xauth
i put in the username and password
but it still keeps on asking the same. i have done my config from a cisco configuration example.
i tried the same with pix ios 6.3 it works fine. pls help me out if possible. i have spend a entire night over this. thank u for ur response. waiting for ur reply.
sebastan
