vpn求助!!!
谁有cisco vpn资料发给我一份!!最好是vpn access server的配置详情!<br>3408589@sina.com
Re:vpn求助!!!
vpn我有一份文档,是在做政府网络的时候跟电信合作时候,由于他们用的是vpn,结果被迫接触了些。。。可能不完善。。你先凑合看吧。。。由于用的是bay的交换机,可能配的时候有些不一样!Re:vpn求助!!!
suagui ,给我也发一份<br>lufu@21cn.com
Re:vpn求助!!!
tks.<br>jdzhh2000@21cn.com
Re:vpn求助!!!
可以发给我一份吗?<br><br>
Re:vpn求助!!!
给我一份好吗?我也非常想学,谢谢!!<br>wsjjarry2002@yahoo.com.cn<br>
<br>
re:可以发一份给我吗,现在极需qycty...
可以发一份给我吗,现在极需<br>qycty@yahoo.com.cn
re:我是一个初级用户,碰到一个VPN的小问题...
我是一个初级用户,碰到一个VPN的小问题,就是用户的权限太大不知道如何设置。<br>具体问题如下:<br>
通过WINDOWS2000自带的PPP VPN虚拟隧道连接。路由上设置了用户和密码,可是现在我发现居然在用户名和密码上空的也能连接。所以我想控制这个漏洞,不知道如何进行具体的设置。<br>
楼上的也发一份VPN的文档给我行吗?<br>
现在具体的设置如下:<br>
XXXX>en<br>
Password:<br>
XXXX#show run<br>
Building configuration...<br>
<br>
Current configuration : 2539 bytes<br>
!<br>
version 12.3<br>
service timestamps debug datetime msec<br>
service timestamps log datetime msec<br>
service password-encryption<br>
!<br>
hostname XXX<br>
!<br>
boot-start-marker<br>
boot-end-marker<br>
!<br>
enable secret level 7 5 $1$uja1$50zoee.tAYUDgzjUPGt8n/<br>
enable password 7 094F471A1A0A<br>
!<br>
username cisco password 7 110A1016141D<br>
aaa new-model<br>
!<br>
!<br>
aaa authentication login userauth local<br>
aaa authorization network groupauth local<br>
aaa session-id common<br>
ip subnet-zero<br>
!<br>
!<br>
<br>
XXXX#en<br>
XXXX#show run<br>
Building configuration...<br>
<br>
Current configuration : 2539 bytes<br>
!<br>
version 12.3<br>
service timestamps debug datetime msec<br>
service timestamps log datetime msec<br>
service password-encryption<br>
!<br>
hostname XXXX<br>
!<br>
boot-start-marker<br>
boot-end-marker<br>
!<br>
enable secret level 7 5 $1$uja1$50zoee.tAYUDgzjUPGt8n/<br>
enable password 7 094F471A1A0A<br>
!<br>
username cisco password 7 110A1016141D<br>
aaa new-model<br>
!<br>
!<br>
aaa authentication login userauth local<br>
aaa authorization network groupauth local<br>
aaa session-id common<br>
ip subnet-zero<br>
!<br>
!<br>
no ip domain lookup<br>
ip domain name nnbus.com<br>
!<br>
ip audit notify log<br>
ip audit po max-events 100<br>
vpdn enable<br>
!<br>
vpdn-group PPTP_Windows<br>
! Default PPTP VPDN group<br>accept-dialin<br>protocol pptp<br>virtual-template 1<br>
!<br>
no ftp-server write-enable<br>
!<br>
!<br>
!<br>
crypto isakmp policy 3<br>hash md5<br>authentication pre-share<br>group 2<br>
crypto isakmp client configuration address-pool local ippool<br>
!<br>
crypto isakmp client configuration group haman<br>key haman<br>pool ippool<br>
!<br>
crypto isakmp client configuration group hamanclient<br>key hamancisco123<br>pool ippool<br>acl 133<br>
!<br>
!<br>
crypto ipsec transform-set myset esp-des esp-md5-hmac<br>
!<br>
crypto dynamic-map dynmap 10<br>set transform-set myset<br>
!<br>
!<br>
crypto map clientmap client authentication list userauth<br>
crypto map clientmap isakmp authorization list groupauth<br>
crypto map clientmap client configuration address respond<br>
crypto map clientmap 10 ipsec-isakmp dynamic dynmap<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
interface FastEthernet0/0<br>ip address 192.168.5.1 255.255.255.0<br>ip nat inside<br>duplex auto<br>speed auto<br>
!<br>
interface Serial0/0<br>ip address 10.101.206.22 255.255.255.240 secondary<br>ip address 10.101.206.21 255.255.255.240 secondary<br>ip address 10.254.101.122 255.255.255.240<br>ip accounting output-packets<br>ip nat outside<br>crypto map clientmap<br>
!<br>
interface FastEthernet0/1<br>no ip address<br>shutdown<br>duplex auto<br>speed auto<br>
!<br>
interface Virtual-Template1<br>ip unnumbered Serial0/0<br>peer default ip address pool ippool<br>no keepalive<br>ppp encrypt mppe auto<br>
!<br>
ip local pool ippool 172.145.0.8 172.145.0.8<br>
ip nat inside source list 1 interface Serial0/0 overload<br>
ip nat inside source static 172.145.0.8 10.101.206.22<br>
no ip http server<br>
no ip http secure-server<br>
ip classless<br>
ip route 0.0.0.0 0.0.0.0 202.103.228.29<br>
!<br>
!<br>
access-list 1 permit 10.101.206.22 0.0.0.255<br>
access-list 133 permit ip 110.101.206.22 0.0.0.255 any<br>
access-list 133 permit ip 10.101.206.22 0.0.0.255 any<br>
!<br>
snmp-server community public RO<br>
snmp-server community private RW<br>
snmp-server enable traps tty<br>
!<br>
!<br>
!<br>
!<br>
dial-peer cor custom<br>
!<br>
!<br>
!<br>
!<br>
!<br>
line con 0<br>
line aux 0<br>
line vty 0 4<br>password 7 05080F1C2243<br>
!<br>
!<br>
!<br>
end<br>
<br>
XXXX#<br>
<br>
为了安全具体的主机名称和IP我都改过了。请谅解。<br>
re:也发给我一份行吗?谢谢了。lsuss...
也发给我一份行吗?谢谢了。<br>lsuss@126.com
re:我也想要一份资料,还有的话麻烦也给我发一...
我也想要一份资料,还有的话麻烦也给我发一份。<br>zh-wei33@163.com
页:
[1]
2