[c-nsp] Cisco vpn - windows client
Oliver Boehmer (oboehmer)
oboehmer at cisco.com
Sun Dec 3 03:24:03 EST 2006
cisco-nsp-bounces at puck.nether.net <> wrote on Saturday, December 02,
2006 8:12 PM:
> I am hoping someone can help me with this setup. I am new to
> the list and can't find a place to search the old posts to see if this
has
> been discussed before. If so I am sorry.
>
> I am setting up a vpn connection to a cisco 2610 router with
> c2600-ik9o3s3-mz.123-19.bin installed. I want windows xp computers to
> connect from remote locations and have been following the write-up at
> http://www.parkansky.com/tutorials/pptp.htm .
>
> I am getting close but not quite there. My Config file and
> errors are below.
[...]
>
> interface Virtual-Template1
> no ip address
> ip mroute-cache
> peer default ip address pool DIAL-IN
> ppp encrypt mppe auto required
> ppp authentication ms-chap ms-chap-v2
[..]
> Dec 2 18:04:31.761: Vi3 IPCP: I CONFREQ [Not negotiated] id 8 len 34
> Dec 2 18:04:31.761: Vi3 IPCP: Address 0.0.0.0 (0x030600000000)
> Dec 2 18:04:31.761: Vi3 IPCP: PrimaryDNS 0.0.0.0 (0x810600000000)
> Dec 2 18:04:31.761: Vi3 IPCP: PrimaryWINS 0.0.0.0 (0x820600000000)
> Dec 2 18:04:31.761: Vi3 IPCP: SecondaryDNS 0.0.0.0
> (0x830600000000)
> Dec 2 18:04:31.761: Vi3 IPCP: SecondaryWINS 0.0.0.0
> (0x840600000000)
> Dec 2 18:04:31.765: Vi3 LCP: O PROTREJ [Open] id 2 len 40
> protocol IPCP
your 2610 is rejecting IPCP because your vtemplate doesn't have IP
enabled ("no ip address").
Either configure the vtemplate as "ip unnumbered Ethernet0/0", or create
a loopback address and make it unnumbered to the loopback.
A word of caution: I don't think you will get decent performance out of
the 2610 in this setup as the CPU is not very fast and will be quite
busy with the encryption/decryption..
oli
More information about the cisco-nsp
mailing list