RE: [cisco-ttl] pix vpn sorunu

From: Serhat Erkan (serkan_at_oytek.com.tr)
Date: Fri Jan 16 2004 - 14:06:04 GMT

  • Next message: sustundag_at_secura.com.tr: "RE: [cisco-ttl] pix vpn sorunu"

    pardon ya, ben VPN client PIX üzerinden internet olayına kafam takılmış, çözümümü geri alıyorum.
     
    (Cuma sendromu..!...)

            -----Original Message-----
            From: Serhat Erkan
            Sent: Friday, January 16, 2004 5:56 PM
            To: cisco-ttl_at_yahoogroups.com
            Subject: RE: [cisco-ttl] pix vpn sorunu
            
            
            İlk olarak ACL'de sadece Client to LAN trafiği işaretlemişsin, burada internet trafiğinide işaretleyen ACL kullanman gerekirki VPN client bu trafiğide PIX'e göndersin. Varsa diğer eksikler onlarıda diğer arkadaşlara bırakıyorum.
             
            Saygılar,
            iyi tatiller.

                    -----Original Message-----
                    From: onur kasap [mailto:kasap_onur_at_yahoo.com]
                    Sent: Friday, January 16, 2004 5:26 PM
                    To: cisco-ttl_at_yahoogroups.com
                    Subject: [cisco-ttl] pix vpn sorunu
                    
                    
                    merhaba arkadaslar
                    merkezimize uzaktan vpn client version 3.5 ile pix 6.3
                    uzerinden local network e baglanmaya calisiyorum.
                    asagidaki konfigurasyonu girdim. pix ile baglanti
                    saglaniyor fakat icerideki hic bir makineye
                    ulasamiyorum (192.168.10.0 li network icin route
                    ekledigim halde).
                    
                    aklima hicbir sey gelmiyor
                    yardimci olabilirseniz cok sevinirim.
                    tesekkurler
                    
                    isakmp enable outside
                    isakmp policy 10 encryption 3des
                    isakmp policy 10 hash md5
                    isakmp policy 10 authentication pre-share
                    isakmp policy 10 group 2
                    isakmp key ***** address 0.0.0.0 netmask 0.0.0.0
                    
                    access-list 80 permit ip 192.168.2.0 255.255.255.0
                    192.168.10.0 255.255.255.0
                    nat(inside) 0 access-list 80
                    
                    crypto ipsec transform-set strong esp-3des
                    esp-sha-hmac
                    crypto dynamic-map cisco 10 set transform-set strong
                    crypto map partner-map 20 ipsec-isakmp dynamic cisco
                    crypto map partner-map interface outside
                    
                    ip local pool havuz 192.168.10.100-192.168.10.254
                    isakmp client configuration address-pool local dealer
                    outside
                    
                    vpngroup bagcilarbld address-pool havuz
                    vpngroup bagcilarbld split-tunnel 80
                    vpngroup bagcilarbld idle-time 1800
                    vpngroup bagcilarbld password ******
                    sysopt connection permit-ipsec
                    
                    __________________________________
                    Do you Yahoo!?
                    Yahoo! Hotjobs: Enter the "Signing Bonus" Sweepstakes
                    http://hotjobs.sweepstakes.yahoo.com/signingbonus
                    
                    
                    Bu listenin Cisco Systems ile dogrudan herhangi bir baglantisi bulunmamaktadir.
                    
                    Listeden cikmak için cisco-ttl-unsubscribe_at_yahoogroups.com adresine bir e-posta gönderebilirsiniz.
                    
                    
                    
                    
      _____

                    Yahoo! Groups Links
                    

                    * To visit your group on the web, go to:
                            http://groups.yahoo.com/group/cisco-ttl/
                              
                    * To unsubscribe from this group, send an email to:
                            cisco-ttl-unsubscribe_at_yahoogroups.com <mailto:cisco-ttl-unsubscribe_at_yahoogroups.com?subject=Unsubscribe>
                              
                    * Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service <http://docs.yahoo.com/info/terms/> .

            

            
            
            
            
            
            
            
            
            
            
            
            
            
            
            
            
            
            
            
            
            ____________________________________________________________________________________________________________________________
            Bu e-mail'in tüm icerigi gönderenin kisisel tasarrufu ile olusturulmus ve gönderilmistir. Oyak Teknoloji Bilisim ve Kart Hizmetleri A.S. bu e-mail icerigi hakkinda sorumluluk kabul etmez.
            
            
            This e-mail has been sent by the sender under his/her own individual discreation. Oyak Teknoloji Bilisim ve Kart Hizmetleri A.S. accepts no responsibility.
            
            Bu listenin Cisco Systems ile dogrudan herhangi bir baglantisi bulunmamaktadir.
            
            Listeden cikmak için cisco-ttl-unsubscribe_at_yahoogroups.com adresine bir e-posta gönderebilirsiniz.
            
            
            
      _____

            Yahoo! Groups Links
            

            * To visit your group on the web, go to:
                    http://groups.yahoo.com/group/cisco-ttl/
                      
            * To unsubscribe from this group, send an email to:
                    cisco-ttl-unsubscribe_at_yahoogroups.com <mailto:cisco-ttl-unsubscribe_at_yahoogroups.com?subject=Unsubscribe>
                      
            * Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service <http://docs.yahoo.com/info/terms/> .

    ____________________________________________________________________________________________________________________________
    Bu e-mail'in tüm icerigi gönderenin kisisel tasarrufu ile olusturulmus ve gönderilmistir. Oyak Teknoloji Bilisim ve Kart Hizmetleri A.S. bu e-mail icerigi hakkinda sorumluluk kabul etmez.

    This e-mail has been sent by the sender under his/her own individual discreation. Oyak Teknoloji Bilisim ve Kart Hizmetleri A.S. accepts no responsibility.



    This archive was generated by hypermail 2.1.5 : Fri Jan 16 2004 - 18:03:35 GMT