Cisco Easy VPN Remote With 802.1x
Cisco Easy VPN Remote With 802.1xThe topology is as follow:Note:
The user must connect to the Easy VPN Remote directly or via a HUB, you can not put a switch between the user and Easy VPN Remote.
1. Configure the Easy VPN Remote.
crypto ipsec client ezvpn mylab
connect auto
group myezvpn key cisco1234
mode network-extension
peer 173.16.1.5
username wanglinlin password cisco
xauth userid mode local
!
interface FastEthernet0/0
ip address 10.1.1.1 255.255.255.0
crypto ipsec client ezvpn mylab inside
!
interface Serial0/0/0
ip address 173.16.1.1 255.255.255.252
clock rate 64000
crypto ipsec client ezvpn mylab
!
ip route 0.0.0.0 0.0.0.0 173.16.1.2
2. Configure AAA on the Remote.
aaa new-model
!
username cisco password 0 cisco
!
aaa authentication login default group local
aaa authentication dot1x default group radius
!
ip radius source-interface FastEthernet0/0
!
radius-server host 172.30.1.66 auth-port 1645 acct-port 1646 key cisco
3. Configure DHCP address pool on the Remote.
ip dhcp excluded-address 10.1.1.1
ip dhcp excluded-address 10.2.2.1
!
ip dhcp pool private
network 10.1.1.0 255.255.255.0
default-router 10.1.1.1
!
ip dhcp pool public
network 10.2.2.0 255.255.255.0
default-router 10.2.2.1
4. Configure 802.1x authentication on the Remote.
dot1x system-auth-control
dot1x re-authentication
!
interface FastEthernet0/0
dot1x port-control auto
dot1x reauthentication
5. Configure identity profile on the Remote.
identity profile default
template Virtual-Template1
!
interface Loopback10
ip address 10.2.2.1 255.255.255.0
!
interface Virtual-Template1
ip unnumbered Loopback10
6. Configure PAT to provide Internet access on the Remote.
interface Loopback10
ip nat inside
!
interface Virtual-Template1
ip nat inside
!
interface Serial0/0/0
ip nat outside
!
access-list 1 permit 10.2.2.0 0.0.0.255
!
ip nat inside source list 1 interface Serial0/0/0 overload
High quality Cisco, Microsoft, IBM, Oracle,Microsoft,Citrix,Vmware,HP,Juniper and other Certification exmas training materials are provided here at PassGuide Site
Download Free Cisco Dynagen Simulation Certification Braindumps
- Free Cisco ADSL PPPOA on dynamips
- Free Router PPPOE configure
- Free Cisco ADSL PPPOE on dynamips
- Free L2TP LAC/LNS configuration
- Free L2TP LAC/LNS configuration
- Free Cisco ASA WebVPN with CSACS 4.0
- Free ospf_Lab 3-2 Multiple-Area OSPF with Stub Areas and Authentication
- Free Cisco L2TP over IPSec With Windows Client
- Free Cisco IOS Easy VPN Server & Remote on Dynamips
- Free RIPV2 advance configure
Leave a Reply
Categories
- 3com
- apple
- Bible
- Book
- ccda
- ccdp
- ccip
- CCM
- ccna
- ccnp
- ccsp
- ccvp
- Cisco
- comptia
- Dynagen
- Exam Express
- General
- Gns-3
- ibm
- IDS/IPS
- Info
- JunOS
- microsft
- Network
- oracle
- passguide adobe
- passguide cisco
- passguide cognos
- passguide comptia
- passguide cwnp
- passguide fujitsu
- passguide hp
- passguide ibm
- passguide juniper
- passguide lotus
- passguide oracle
- passguide sun
- passguide symantc
- Pemu
- Redhat
- Study
- Video
- Wireless LAN
Archives
Blogroll
- 640-802 Exam Questions
- 646-204 CSE
- CCNA Security Exam
- CCSP Certification Dumps
- Cisco 7200emu
- cisco ccde exam
- Cisco CCNA Training Materials
- cisco ccvp Practice test
- Cisco Certifications Exams
- Dynamips cisco
- Free P4s
- free pass4sure
- Free PassGuide
- Free Testinside
- GNS3 | Graphical Network Simulator
- PassGuide Test Questions
- Sadikhov Forum
- Testking Dumps