RE: [cisco-ttl] pix vpn sorunu

From: Serhat Erkan (serkan_at_oytek.com.tr)
Date: Fri Jan 16 2004 - 13:55:38 GMT

  • Next message: sustundag_at_secura.com.tr: "RE: [cisco-ttl] pix vpn sorunu"

    İlk olarak ACL'de sadece Client to LAN trafiği işaretlemişsin, burada internet trafiğinide işaretleyen ACL kullanman gerekirki VPN client bu trafiğide PIX'e göndersin. Varsa diğer eksikler onlarıda diğer arkadaşlara bırakıyorum.
     
    Saygılar,
    iyi tatiller.

            -----Original Message-----
            From: onur kasap [mailto:kasap_onur_at_yahoo.com]
            Sent: Friday, January 16, 2004 5:26 PM
            To: cisco-ttl_at_yahoogroups.com
            Subject: [cisco-ttl] pix vpn sorunu
            
            
            merhaba arkadaslar
            merkezimize uzaktan vpn client version 3.5 ile pix 6.3
            uzerinden local network e baglanmaya calisiyorum.
            asagidaki konfigurasyonu girdim. pix ile baglanti
            saglaniyor fakat icerideki hic bir makineye
            ulasamiyorum (192.168.10.0 li network icin route
            ekledigim halde).
            
            aklima hicbir sey gelmiyor
            yardimci olabilirseniz cok sevinirim.
            tesekkurler
            
            isakmp enable outside
            isakmp policy 10 encryption 3des
            isakmp policy 10 hash md5
            isakmp policy 10 authentication pre-share
            isakmp policy 10 group 2
            isakmp key ***** address 0.0.0.0 netmask 0.0.0.0
            
            access-list 80 permit ip 192.168.2.0 255.255.255.0
            192.168.10.0 255.255.255.0
            nat(inside) 0 access-list 80
            
            crypto ipsec transform-set strong esp-3des
            esp-sha-hmac
            crypto dynamic-map cisco 10 set transform-set strong
            crypto map partner-map 20 ipsec-isakmp dynamic cisco
            crypto map partner-map interface outside
            
            ip local pool havuz 192.168.10.100-192.168.10.254
            isakmp client configuration address-pool local dealer
            outside
            
            vpngroup bagcilarbld address-pool havuz
            vpngroup bagcilarbld split-tunnel 80
            vpngroup bagcilarbld idle-time 1800
            vpngroup bagcilarbld password ******
            sysopt connection permit-ipsec
            
            __________________________________
            Do you Yahoo!?
            Yahoo! Hotjobs: Enter the "Signing Bonus" Sweepstakes
            http://hotjobs.sweepstakes.yahoo.com/signingbonus
            
            
            Bu listenin Cisco Systems ile dogrudan herhangi bir baglantisi bulunmamaktadir.
            
            Listeden cikmak için cisco-ttl-unsubscribe_at_yahoogroups.com adresine bir e-posta gönderebilirsiniz.
            
            
            
    Yahoo! Groups Sponsor
    ADVERTISEMENT
    click here <http://rd.yahoo.com/SIG=12ct438ul/M=267637.4116732.5333197.1261774/D=egroupweb/S=1705004726:HM/EXP=1074353168/A=1945638/R=0/*http://www.netflix.com/Default?mqso=60178383&partid=4116732
     <http://us.adserver.yahoo.com/l?M=267637.4116732.5333197.1261774/D=egroupmail/S=:HM/A=1945638/rand=740008168>

            
      _____

            Yahoo! Groups Links
            

            * To visit your group on the web, go to:
                    http://groups.yahoo.com/group/cisco-ttl/
                      
            * To unsubscribe from this group, send an email to:
                    cisco-ttl-unsubscribe_at_yahoogroups.com <mailto:cisco-ttl-unsubscribe_at_yahoogroups.com?subject=Unsubscribe>
                      
            * Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service <http://docs.yahoo.com/info/terms/> .

    ____________________________________________________________________________________________________________________________
    Bu e-mail'in tüm icerigi gönderenin kisisel tasarrufu ile olusturulmus ve gönderilmistir. Oyak Teknoloji Bilisim ve Kart Hizmetleri A.S. bu e-mail icerigi hakkinda sorumluluk kabul etmez.

    This e-mail has been sent by the sender under his/her own individual discreation. Oyak Teknoloji Bilisim ve Kart Hizmetleri A.S. accepts no responsibility.



    This archive was generated by hypermail 2.1.5 : Fri Jan 16 2004 - 17:52:58 GMT