Cisco 520-T1 Software Guide - Page 73

Chapter 6 Configuring a VPN Using Easy VPN and an IPsec Tunnel Create an Easy VPN Remote Configuration Step 2 Command or Action crypto map map-name Example: Router(config-if)# crypto map static-map Router(config-if)# Step 3 exit Example: Router(config-crypto-map)# exit Router(config)# Purpose Applies the crypto map to the interface. See the Cisco IOS Security Command Reference for more detail about this command. Returns to global configuration mode. Create an Easy VPN Remote Configuration The router acting as the IPsec remote router must create an Easy VPN remote configuration and assign it to the outgoing interface. Perform these steps to create the remote configuration, beginning in global configuration mode: Step 1 Step 2 Step 3 Step 4 Command or Action crypto ipsec client ezvpn name Example: Router(config)# crypto ipsec client ezvpn ezvpnclient Router(config-crypto-ezvpn)# group group-name key group-key Example: Router(config-crypto-ezvpn)# group ezvpnclient key secret-password Router(config-crypto-ezvpn)# peer {ipaddress | hostname} Example: Router(config-crypto-ezvpn)# peer 192.168.100.1 Router(config-crypto-ezvpn)# mode {client | network-extension | network extension plus} Example: Router(config-crypto-ezvpn)# mode client Router(config-crypto-ezvpn)# Purpose Creates a Cisco Easy VPN remote configuration, and enters Cisco Easy VPN remote configuration mode. Specifies the IPsec group and IPsec key value for the VPN connection. Specifies the peer IP address or hostname for the VPN connection. Note A hostname can be specified only when the router has a DNS server available for hostname resolution. Specifies the VPN mode of operation. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 6-9