ylhddh 发表于 2004-4-16 16:46:08

vpn求助!!!

谁有cisco vpn资料发给我一份!!最好是vpn access server的配置详情!<br>
3408589@sina.com

suagui 发表于 2004-4-18 20:30:09

Re:vpn求助!!!

vpn我有一份文档,是在做政府网络的时候跟电信合作时候,由于他们用的是vpn,结果被迫接触了些。。。可能不完善。。你先凑合看吧。。。由于用的是bay的交换机,可能配的时候有些不一样!

sdh 发表于 2004-4-23 12:01:40

Re:vpn求助!!!

suagui ,给我也发一份<br>
lufu@21cn.com

流浪者 发表于 2004-4-26 14:30:13

Re:vpn求助!!!

tks.<br>
jdzhh2000@21cn.com

richchi 发表于 2004-4-27 14:07:14

Re:vpn求助!!!

可以发给我一份吗?<br>
<br>

wsjjarry 发表于 2004-5-19 13:54:41

Re:vpn求助!!!

给我一份好吗?我也非常想学,谢谢!!<br>
wsjjarry2002@yahoo.com.cn<br>
<br>

qycty 发表于 2005-4-21 17:04:17

re:可以发一份给我吗,现在极需qycty...

可以发一份给我吗,现在极需<br>
qycty@yahoo.com.cn

haman 发表于 2005-4-23 11:39:09

re:我是一个初级用户,碰到一个VPN的小问题...

我是一个初级用户,碰到一个VPN的小问题,就是用户的权限太大不知道如何设置。<br>
具体问题如下:<br>
通过WINDOWS2000自带的PPP VPN虚拟隧道连接。路由上设置了用户和密码,可是现在我发现居然在用户名和密码上空的也能连接。所以我想控制这个漏洞,不知道如何进行具体的设置。<br>
楼上的也发一份VPN的文档给我行吗?<br>
现在具体的设置如下:<br>
XXXX>en<br>
Password:<br>
XXXX#show run<br>
Building configuration...<br>
<br>
Current configuration : 2539 bytes<br>
!<br>
version 12.3<br>
service timestamps debug datetime msec<br>
service timestamps log datetime msec<br>
service password-encryption<br>
!<br>
hostname XXX<br>
!<br>
boot-start-marker<br>
boot-end-marker<br>
!<br>
enable secret level 7 5 $1$uja1$50zoee.tAYUDgzjUPGt8n/<br>
enable password 7 094F471A1A0A<br>
!<br>
username cisco password 7 110A1016141D<br>
aaa new-model<br>
!<br>
!<br>
aaa authentication login userauth local<br>
aaa authorization network groupauth local<br>
aaa session-id common<br>
ip subnet-zero<br>
!<br>
!<br>
<br>
XXXX#en<br>
XXXX#show run<br>
Building configuration...<br>
<br>
Current configuration : 2539 bytes<br>
!<br>
version 12.3<br>
service timestamps debug datetime msec<br>
service timestamps log datetime msec<br>
service password-encryption<br>
!<br>
hostname XXXX<br>
!<br>
boot-start-marker<br>
boot-end-marker<br>
!<br>
enable secret level 7 5 $1$uja1$50zoee.tAYUDgzjUPGt8n/<br>
enable password 7 094F471A1A0A<br>
!<br>
username cisco password 7 110A1016141D<br>
aaa new-model<br>
!<br>
!<br>
aaa authentication login userauth local<br>
aaa authorization network groupauth local<br>
aaa session-id common<br>
ip subnet-zero<br>
!<br>
!<br>
no ip domain lookup<br>
ip domain name nnbus.com<br>
!<br>
ip audit notify log<br>
ip audit po max-events 100<br>
vpdn enable<br>
!<br>
vpdn-group PPTP_Windows<br>
! Default PPTP VPDN group<br>accept-dialin<br>protocol pptp<br>virtual-template 1<br>
!<br>
no ftp-server write-enable<br>
!<br>
!<br>
!<br>
crypto isakmp policy 3<br>hash md5<br>authentication pre-share<br>group 2<br>
crypto isakmp client configuration address-pool local ippool<br>
!<br>
crypto isakmp client configuration group haman<br>key haman<br>pool ippool<br>
!<br>
crypto isakmp client configuration group hamanclient<br>key hamancisco123<br>pool ippool<br>acl 133<br>
!<br>
!<br>
crypto ipsec transform-set myset esp-des esp-md5-hmac<br>
!<br>
crypto dynamic-map dynmap 10<br>set transform-set myset<br>
!<br>
!<br>
crypto map clientmap client authentication list userauth<br>
crypto map clientmap isakmp authorization list groupauth<br>
crypto map clientmap client configuration address respond<br>
crypto map clientmap 10 ipsec-isakmp dynamic dynmap<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
!<br>
interface FastEthernet0/0<br>ip address 192.168.5.1 255.255.255.0<br>ip nat inside<br>duplex auto<br>speed auto<br>
!<br>
interface Serial0/0<br>ip address 10.101.206.22 255.255.255.240 secondary<br>ip address 10.101.206.21 255.255.255.240 secondary<br>ip address 10.254.101.122 255.255.255.240<br>ip accounting output-packets<br>ip nat outside<br>crypto map clientmap<br>
!<br>
interface FastEthernet0/1<br>no ip address<br>shutdown<br>duplex auto<br>speed auto<br>
!<br>
interface Virtual-Template1<br>ip unnumbered Serial0/0<br>peer default ip address pool ippool<br>no keepalive<br>ppp encrypt mppe auto<br>
!<br>
ip local pool ippool 172.145.0.8 172.145.0.8<br>
ip nat inside source list 1 interface Serial0/0 overload<br>
ip nat inside source static 172.145.0.8 10.101.206.22<br>
no ip http server<br>
no ip http secure-server<br>
ip classless<br>
ip route 0.0.0.0 0.0.0.0 202.103.228.29<br>
!<br>
!<br>
access-list 1 permit 10.101.206.22 0.0.0.255<br>
access-list 133 permit ip 110.101.206.22 0.0.0.255 any<br>
access-list 133 permit ip 10.101.206.22 0.0.0.255 any<br>
!<br>
snmp-server community public RO<br>
snmp-server community private RW<br>
snmp-server enable traps tty<br>
!<br>
!<br>
!<br>
!<br>
dial-peer cor custom<br>
!<br>
!<br>
!<br>
!<br>
!<br>
line con 0<br>
line aux 0<br>
line vty 0 4<br>password 7 05080F1C2243<br>
!<br>
!<br>
!<br>
end<br>
<br>
XXXX#<br>
<br>
为了安全具体的主机名称和IP我都改过了。请谅解。<br>

haman 发表于 2005-4-24 11:34:15

re:也发给我一份行吗?谢谢了。lsuss...

也发给我一份行吗?谢谢了。<br>
lsuss@126.com

zh_zh_wei 发表于 2005-6-30 01:45:34

re:我也想要一份资料,还有的话麻烦也给我发一...

我也想要一份资料,还有的话麻烦也给我发一份。<br>
zh-wei33@163.com
页: [1] 2
查看完整版本: vpn求助!!!