Hello!
I want to create VPN gateway on cisco2821 (IOS - c2800nm-advipservicesk9-mz.124-10.bin). I've created pptp and it works fine. But with IPSec cisco not send to client ip-address and not set filter-id, which I download from radius server (pptp do it fine). IP is took from pool,filter is empty.
See my config in attach.
IP address i send throuth radius attribute 8, and filter-id - 11
and see in debug:
Sep 19 14:09:12.500 MSK: RADIUS(000000E1): Config NAS IP: 0.0.0.0
Sep 19 14:09:12.500 MSK: RADIUS/ENCODE(000000E1): acct_session_id: 215
Sep 19 14:09:12.500 MSK: RADIUS(000000E1): sending
Sep 19 14:09:12.504 MSK: RADIUS/ENCODE: Best Local IP-Address 192.168.22.233 for Radius-Server 192.168.12.1
Sep 19 14:09:12.504 MSK: RADIUS(000000E1): Send Access-Request to 192.168.12.1:1812 id 1645/166, len 97
Sep 19 14:09:12.504 MSK: RADIUS: authenticator 37 22 36 DE 43 62 BD F1 - 6B 3A 71 DE D1 3D 85 85
Sep 19 14:09:12.504 MSK: RADIUS: User-Name [1] 7 "testt"
Sep 19 14:09:12.504 MSK: RADIUS: User-Password [2] 18 *
Sep 19 14:09:12.504 MSK: RADIUS: Calling-Station-Id [31] 14 "192.168.19.229"
Sep 19 14:09:12.504 MSK: RADIUS: NAS-Port-Type [61] 6 Virtual [5]
Sep 19 14:09:12.504 MSK: RADIUS: NAS-Port [5] 6 0
Sep 19 14:09:12.504 MSK: RADIUS: NAS-Port-Id [87] 14 "192.168.22.233"
Sep 19 14:09:12.504 MSK: RADIUS: Service-Type [6] 6 Login [1]
Sep 19 14:09:12.504 MSK: RADIUS: NAS-IP-Address [4] 6 192.168.22.233
Sep 19 14:09:12.528 MSK: RADIUS: Received from id 1645/166 192.168.12.1:1812, Access-Accept, len 70
Sep 19 14:09:12.528 MSK: RADIUS: authenticator 99 9A 03 BA F7 0F 57 84 - 18 91 31 46 91 51 2A ED
Sep 19 14:09:12.528 MSK: RADIUS: Framed-Compression [13] 6 VJ TCP/IP Header Compressi[1]
Sep 19 14:09:12.528 MSK: RADIUS: Framed-Protocol [7] 6 PPP [1]
Sep 19 14:09:12.528 MSK: RADIUS: Service-Type [6] 6 Framed [2]
Sep 19 14:09:12.528 MSK: RADIUS: Filter-Id [11] 5
Sep 19 14:09:12.528 MSK: RADIUS: 31 30 35 [105]
Sep 19 14:09:12.528 MSK: RADIUS: Framed-IP-Netmask [9] 6 255.255.255.0
Sep 19 14:09:12.528 MSK: RADIUS: Framed-IP-Address [8] 6 192.168.22.172
Sep 19 14:09:12.528 MSK: RADIUS: Vendor, Cisco [26] 15
Sep 19 14:09:12.528 MSK: RADIUS: Cisco AVpair [1] 9 "acl=105"
i.e. 2821 recieved attributes correctly,but not applied theirs.
What do I do incorrectly?
Thanks!
