时间:2021-07-01 10:21:17 帮助过:8人阅读
ASAEZvpnEZclientlessconfiguration Step1. Configusernamepassandisakmp-1 usernameciscopasscisco123 cryptoisakmpenableoutside cryptoisakmppolicy10 encryptiondes hashmd5 authenticationpre-share group2 Step2. Configippoolandsplit_tunnel_listfor
Step 1. Config username pass andisakmp-1
username cisco pass cisco123
crypto isakmp enable outside
crypto isakmp policy 10
encryption des
hash md5
authentication pre-share
group 2
Step 2. Config ip pool and split_tunnel_listfor EZclientless
ip local pool vpn_pool 10.10.10.10-10.10.10.50
access-list split_tunnelpermit ip 192.168.2.0 255.255.255.0 any
Step 4. Config group_policy for EZclientless
group-policy vpn_group_policy internal
group-policy vpn_group_policy attributes
split-tunnel-policy tunnelspecified
split-tunnel-network-list value split_tunnel
Step 5. Config group profile for EZclientless
tunnel-group vpn_group1 type ipsec-ra
tunnel-group vpn_group1 general-attributes
address-pool vpn_pool
default-group-policy vpn_group_policy
Step 6. Config MAP and DMAP for EZclientless
tunnel-group vpn_group1 ipsec-attributes
pre-shared-key cisco123
crypto ipsec transform-set SET esp-des esp-md5-hmac
crypto dynamic-map vpn_dymap 10 set transform-set SET
crypto map mymap 1000 ipsec-isakmp dynamic vpn_dymap
crypto map mymap int outside
step7.install SSLclient software and test:
yeexw” 博客,转载请与作者联系!