NAT0做了,下面的配置哪里有问题么?客户端连不上来,急. ?2 ]7 E2 R7 W
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac; l" `& j2 `* _
crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac4 J7 ?( f8 r$ k- P. h
crypto ipsec security-association lifetime seconds 28800 e/ l) n7 J# e' c0 p* S
crypto ipsec security-association lifetime kilobytes 4608000
$ \1 z4 ~) z7 h q7 D; {crypto dynamic-map outside_dyn_map 150 match address ezvpn_fw) V# [. ~4 p6 t+ u
crypto dynamic-map outside_dyn_map 150 set transform-set ESP-3DES-MD58 A/ d' C: m4 B7 V1 `2 b
crypto dynamic-map outside_dyn_map 160 match address ezvpn_bj
$ o# T& t2 n& H2 q3 R1 M W) _crypto dynamic-map outside_dyn_map 160 set transform-set ESP-DES-MD5) A: ^. C$ U6 G
crypto dynamic-map outside_dyn_map 170 match address ezvpn_wh9 [1 o- M0 c8 {5 L6 l
crypto dynamic-map outside_dyn_map 170 set transform-set ESP-DES-MD5
5 z4 ^, K! V/ [2 Z; Z7 F$ Hcrypto dynamic-map outside_dyn_map 199 set transform-set ESP-DES-MD5
: ]3 d: `6 M: }& v; y% icrypto dynamic-map outside_dyn_map 200 set transform-set ESP-3DES-MD5$ E! x" g" S& t* k/ V" f% u! f* Y
crypto dynamic-map guodu 10 set transform-set ESP-3DES-MD5 ESP-DES-MD56 k# _* ?1 `* n+ W1 K' O! ^, |
crypto map outside_map 65535 ipsec-isakmp dynamic outside_dyn_map2 M3 j4 L1 o9 D5 v9 {
crypto map outside_map interface outside
# I# X5 b9 b- t' z# A4 D# g+ Jcrypto isakmp identity address
5 N. U& d8 ^5 `, [crypto isakmp enable outside
4 U o0 e; g9 ~% Icrypto isakmp policy 10
! m. d$ e; }8 P6 ?" b0 m/ ]authentication pre-share
o: a+ i* I8 ^# Iencryption des
9 N/ I% l K0 n) Z6 ^hash md5
5 Z4 N3 r& v: u( M$ i ngroup 2
$ I0 G& Q% p1 `7 i, k- M+ o- {lifetime 86400
: I- ^- t: P# J2 d! O; Pcrypto isakmp policy 20
3 s5 J$ T6 m/ S' h* ~4 F( x6 `6 Yauthentication pre-share
) i, W. N. o$ |( B3 ^encryption 3des; {, Y2 G9 x7 G/ s% h! w" R+ C* o I1 {
hash md5
2 R5 C/ V/ E1 S0 Q; Bgroup 20 t! N. S( }) p$ `2 l5 w9 O
lifetime 86400, c* _* I" s. I3 O5 F
crypto isakmp policy 65535
; h/ S2 A6 F' n3 g2 J& Xauthentication pre-share
$ w; e; H- h' v7 fencryption 3des
, i# W+ b$ B& s, Y; g; W) l7 nhash sha
" J4 \8 L5 t/ Mgroup 28 ?$ O8 H/ C6 ^' s* F
lifetime 86400# c: Y4 |+ {. p* `- p/ S
crypto isakmp nat-traversal 30
/ s8 U" p1 i" O4 O& O* G
2 P! g! z, t9 m* T. u: C: jgroup-policy vpnforoaGROUP internal
, Y9 j& g |. T% \9 z+ U. Pgroup-policy vpnforoaGROUP attributes
1 i5 s$ }1 J2 `+ evpn-idle-timeout 1800
0 O# R1 L; [5 Gsplit-tunnel-policy tunnelspecified7 z% W: v6 D7 L
split-tunnel-network-list value vpnforoa_splitTunnelAcl! w9 A+ r! k) d" V& p% `
tunnel-group vpnforoa type remote-access, |& m) y' k, j: A
tunnel-group vpnforoa general-attributes
' F1 R6 i) x: _( J( k! i. Uaddress-pool oapool3 C0 l3 U2 N5 R" m8 u2 k! p
default-group-policy vpnforoaGROUP' k1 M/ l% _+ s8 ]$ e5 t. v/ D
tunnel-group vpnforoa ipsec-attributes
- l. m6 ?/ q. m! y8 D* Wpre-shared-key * |
|
所有IT类厂商认证考试题库下载
【新盟教育】2023最新华为HCIA全套视频合集【网工基础全覆盖】---国sir公开课合集
【新盟教育】网工小白必看的!2023最新版华为认证HCIA Datacom零基础全套实战课
原创_超融合自动化运维工具cvTools
重量级~~30多套JAVA就业班全套 视频教程(请尽快下载,链接失效后不补)
链接已失效【超过几百G】EVE 国内和国外镜像 全有了 百度群分享
某linux大佬,积累多年的电子书(约300本)
乾颐堂现任明教教主Python完整版
乾颐堂 教主技术进化论 2018-2019年 最新31-50期合集视频(各种最新技术杂谈视频)
Python学习视频 0起点视频 入门到项目实战篇 Python3.5.2视频教程 共847集 能学102天
约21套Python视频合集 核心基础视频教程(共310G,已压缩)
最新20180811录制 IT爱好者-清风羽毛 - 网络安全IPSec VPN实验指南视频教程
最新20180807录制EVE开机自启动虚拟路由器并桥接物理网卡充当思科路由器
[复制链接]
