Configuring L2TP over IPsec

bendongdong
3 ℃
2020-04-30

整理文档很辛苦，赏杯茶钱您下走！

还剩 ... 页未读，继续阅读 >>

免费阅读已结束，点击下载阅读编辑剩下 ... 页

阅读已结束，您可以下载文档离线阅读编辑

资源描述

cryptoikev1policy10authenticationpre-shareencryption3deshashshagroup5lifetime86400cryptoipsecikev1transform-setmy-transform-set-ikev1esp-desesp-sha-hmaccryptoipsecikev1transform-setmy-transform-set-ikev1modetransportgroup-policyDfltGrpPolicyattributesvpn-tunnel-protocoll2tp-ipsec//group-policysales_policyinternal//group-policysales_policyattributes//wins-servervalue209.165.201.3209.165.201.4//dns-servervalue209.165.201.1209.165.201.2iplocalpoolsales_addresses10.4.5.10-10.4.5.20mask255.255.255.0tunnel-groupDefaultRAGroupgeneral-attributesaddress-poolsales_addressestunnel-groupsales-tunneltyperemote-accesstunnel-groupDefaultRAGroupgeneral-attributesdefault-group-policyDfltGrpPolicytunnel-groupDefaultRAGroupgeneral-attributesauthentication-server-groupsales_serverLOCALtunnel-groupnameppp-attributesauthenticationms-chap-v1tunnel-groupDefaultRAGroupipsec-attributesikev1pre-shared-key123456//tunnel-groupsales_tunnelgeneral-attributes//accounting-server-groupsales_aaa_serverl2tptunnelhello100//cryptoisakmpenable//cryptoisakmpnat-traversal1500usernamejdoepasswordj!doe1mschapcryptoikev1policy5group5案例：iplocalpoolsales_addresses209.165.202.129-209.165.202.158group-policysales_policyinternalgroup-policysales_policyattributeswins-servervalue209.165.201.3209.165.201.4dns-servervalue209.165.201.1209.165.201.2vpn-tunnel-protocoll2tp-ipsectunnel-groupDefaultRAGroupgeneral-attributesdefault-group-policysales_policyaddress-poolsales_addressestunnel-groupDefaultRAGroupipsec-attributespre-shared-key*tunnel-groupDefaultRAGroupppp-attributesnoauthenticationpapauthenticationchapauthenticationms-chap-v1authenticationms-chap-v2cryptoipsecikev1transform-setmy-transform-set-ikev1esp-desesp-sha-hmaccryptoipsecikev1transform-setmy-transform-set-ikev1modetransportcryptodynamic-mapdyno10setikev1transform-settranscryptomapvpn20ipsec-isakmpdynamicdynocryptomapvpninterfaceoutsidecryptoikev1enableoutsidecryptoikev1policy10authenticationpre-shareencryption3deshashshagroup2lifetime86400还有你少配了一个split-tunnel-policytunnelspecified,所以客户端那边应该看到的路由是0.0.0.00.0.0.0对吧?