Racoon to Cisco ASA 5505
jhall at socket.net
jhall at socket.net
Fri Aug 26 21:09:41 UTC 2011
> Yes, post that to the list.
>
I am not sure if this is the entire configuration or not, but this is what
they have posted.
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
crypto map rackmap 201 match address 201
crypto map rackmap 201 set peer Jefferson_City
crypto map rackmap 201 set transform-set ESP-3DES-SHA
crypto map rackmap interface outside
crypto isakmp identity address
crypto isakmp enable outside
crypto isakmp policy 10
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
access-list 201 line 1 extended permit ip 192.168.100.0 255.255.252.0
10.129.10.0 255.255.255.0
access-list 201 line 2 extended permit ip 192.168.100.0 255.255.252.0
10.129.20.0 255.255.255.0
access-list 201 line 3 extended permit ip 192.168.100.0 255.255.252.0
10.129.30.0 255.255.255.0
access-list 201 line 4 extended permit ip 192.168.100.0 255.255.252.0
10.129.50.0 255.255.255.0
access-list 201 line 5 extended permit ip 192.168.100.0 255.255.252.0
10.129.60.0 255.255.255.0
access-list 201 line 6 extended permit ip 192.168.100.0 255.255.252.0
10.129.70.0 255.255.255.0
access-list 201 line 7 extended permit ip 192.168.100.0 255.255.252.0
10.129.80.0 255.255.255.0
More information about the freebsd-questions
mailing list