Solved: Re: Remote access vpn wrong!

qumarce-habibzadeh · ‎03-24-2026

Hello

what should I change?

Thanks in Advance

Qu

hostname R1

username client password 0 Cisco123

!

crypto isakmp policy 10

encr aes 256

authentication pre-share

group 5

!

crypto isakmp client configuration group VPN1

key Cisco123

pool VPN-POOL

!

crypto ipsec transform-set Myset esp-aes 256 esp-sha-hmac

!

crypto map Mymap isakmp authorization list 101

!

interface GigabitEthernet0/0

ip address 10.10.10.1 255.255.255.0

crypto map Mymap

!

interface GigabitEthernet0/1

ip address 172.16.1.1 255.255.255.0

!

ip local pool VPN-POOL 192.168.10.1 192.168.10.5

!

access-list 101 permit ip 192.168.1.0 0.0.0.255 10.10.10.0 0.0.0.255

!

Flavio Miranda · ‎03-24-2026

@qumarce-habibzadeh

If your plan is to have client VPN working, there are quite a lot configuration missing. I will not list everything but will list a few. Take a close look on my file and see if you can figure out what was done.

For client VPN you need a Radius server. The router is not able to authenticate the user.

I used one of your server as Radius. Check in Service > AAA

You need to setup the radius server on the router.

To connect a PC client on the VPN, go to the VPN client and put this

Group: VPN1

Group Key: Cisco123

Host IP: 10.10.10.1

Username: user

Password: pass

View solution in original post

Flavio Miranda · ‎03-24-2026

@qumarce-habibzadeh

If your plan is to have client VPN working, there are quite a lot configuration missing. I will not list everything but will list a few. Take a close look on my file and see if you can figure out what was done.

For client VPN you need a Radius server. The router is not able to authenticate the user.

I used one of your server as Radius. Check in Service > AAA

You need to setup the radius server on the router.

To connect a PC client on the VPN, go to the VPN client and put this

Group: VPN1

Group Key: Cisco123

Host IP: 10.10.10.1

Username: user

Password: pass

qumarce-habibzadeh · ‎03-25-2026

Dear Flavio!

I have to study and learn more!

Thanks a lot for your good support

Qu

qumarce-habibzadeh · ‎04-02-2026

Hello

From my Remote Access setup I get the message: "Bad Username /or Password"

What I should I change?

Thanks

Flavio Miranda · ‎04-04-2026

@qumarce-habibzadeh you are missing radius server config on the router. And your ACL does not seems correct.

you dont have 192.168.10.0 on the network.

qumarce-habibzadeh · ‎04-05-2026

Hi Flavio
Packet Tracer 9 does not allow configuring a RADIUS server. You can see in the picture that I have added here.
Does the access list belong to VPN-POOL or should it be changed?
Thank you

Flavio Miranda · ‎04-06-2026

It does. But it is different from previous versions.

R1(config)#radius-server ?

host Specify a Radius server

key Set Radius encryption key.

R1(config)#radius-server

qumarce-habibzadeh · ‎04-06-2026

I had the new router PT8200, in Router c2900 ist setup Radius Server possible.

But the effect is the same, finally I get "Bad Username or password".

Thank you