Feature history for remote access vpns – Cisco ASA 5505 User Manual

Page 1539

Advertising
background image

69-15

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 69 Configuring Remote Access IPsec VPNs

Feature History for Remote Access VPNs

hostname(config)# crypto ipsec ikev1 transform-set FirstSet esp-3des esp-md5-hmac

hostname(config)# tunnel-group testgroup type remote-access

hostname(config)# tunnel-group testgroup general-attributes

hostname(config-general)# address-pool testpool

hostname(config)# tunnel-group testgroup ipsec-attributes

hostname(config-ipsec)# ikev1 pre-shared-key 44kkaol59636jnfx

hostname(config)# crypto dynamic-map dyn1 1 set ikev1 transform-set FirstSet

hostname(config)# crypto dynamic-map dyn1 1 set reverse-route

hostname(config)# crypto map mymap 1 ipsec-isakmp dynamic dyn1

hostname(config)# crypto map mymap interface outside

hostname(config)# write memory

The following example shows how to configure a remote access IPsec/IKEv2 VPN:

hostname(config)# interface ethernet0

hostname(config-if)# ip address 10.10.4.200 255.255.0.0

hostname(config-if)# nameif outside

hostname(config-if)# no shutdown

hostname(config)# crypto ikev2 policy 1

hostname(config-ikev2-policy)# group 2

hostname(config-ikev2-policy)# integrity sha

hostname(config-ikev2-policy)# lifetime 43200

hostname(config-ikev2-policy)# prf sha

hostname(config)# crypto ikev2 outside

hostname(config)# ip local pool testpool 192.168.0.10-192.168.0.15

hostname(config)# username testuser password 12345678

hostname(config)# crypto ipsec ikev2 ipsec-proposal FirstSet

hostname(config-ipsec-proposal)# protocol esp encryption 3des aes

hostname(config)# tunnel-group testgroup type remote-access

hostname(config)# tunnel-group testgroup general-attributes

hostname(config-general)# address-pool testpool

hostname(config)# tunnel-group testgroup webvpn-attributes

hostname(config-webvpn)# authentication aaa certificate

hostname(config)# crypto dynamic-map dyn1 1 set ikev2 ipsec-proposal FirstSet

hostname(config)# crypto dynamic-map dyn1 1 set reverse-route

hostname(config)# crypto map mymap 1 ipsec-isakmp dynamic dyn1

hostname(config)# crypto map mymap interface outside

hostname(config)# write memory

Feature History for Remote Access VPNs

Table 69-1

lists the release history for this feature.

Table 69-1

Feature History for Feature-1

Feature Name

Releases

Feature Information

Remote access VPNs for IPsec IKEv1 and SSL. 7.0

Remote access VPNs allow users to connect to a central site
through a secure connection over a TCP/IP network such as
the Internet.

Remote access VPNs for IPsec IKEv2

8.4(1)

Added IPsec IKEv2 support for the AnyConnect Secure
Mobility Client.

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals