Re: Parameters sent from VPN concentrator

iltiaz · ‎04-26-2004

Can anyone tell me what are the parameters that are sent from the conentrator to the remote cisco vpn client during the tunnel establishment?

gfullage · ‎04-26-2004

Lots of things, including (but not limited to):

- IP address

- DNS server IP address (up to 2)

- WINS server IP address (up to 2)

- banner

- default domain name

- split tunnel network list

- split DNS domain list

- save password feature

You can easily see what's sent by opening up the client log viewer, then start up your tunnel, then go through and look at the log, everything that the concentrator sends will be listed there in the format:

34 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x63000010

MODE_CFG_REPLY: Attribute = INTERNAL_IPV4_ADDRESS: , value = 12.13.254.121

35 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x63000010

MODE_CFG_REPLY: Attribute = INTERNAL_IPV4_DNS(1): , value = 12.13.200.248

36 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x63000010

MODE_CFG_REPLY: Attribute = INTERNAL_IPV4_DNS(2): , value = 12.13.14.184

37 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x63000010

MODE_CFG_REPLY: Attribute = INTERNAL_IPV4_NBNS(1) (a.k.a. WINS) : , value = 12.13.193.200

38 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x63000010

MODE_CFG_REPLY: Attribute = INTERNAL_IPV4_NBNS(2) (a.k.a. WINS): , value = 12.13.235.228

39 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x6300000E

MODE_CFG_REPLY: Attribute = MODECFG_UNITY_BANNER, value = Hi there

40 15:01:46.073 04/27/04 Sev=Info/5 IKE/0x6300000D

MODE_CFG_REPLY: Attribute = MODECFG_UNITY_SAVEPWD: , value = 0x00000000

To see these in the Log Viewer you will need to set all your logging levels to High first.

iltiaz · ‎04-28-2004

How about Group name and Split tunnel policy.

Are these passed to the client too.

Thanks,

Iltiaz

fyi.....I can't check in the concentrator because I don't have any concentrator. I am just studying for the CSVPN exam.