VPN 3000 REMOTE ACCESS PRE-SHARED KEY CONFIGURATION

  1. Remote access configurations primarily are contained within the Configuration | User Management screens. Created users can inherit parameters from either individual groups or the base group (default if not specified). Individual groups can also inherit characteristics from the base group. Cisco recommends you configure the base group first, then individual groups, followed by the users.

  2. The Configuration | User Management | Groups or Base Group screens are sorted by the following configuration tabs: Identity (individual groups only), General, IPSec, Client Config, Client FW, HW Client, and PPTP/L2TP. Know the parameters that you can configure on each of these tabs.

  3. User authentication occurs by means of the concentrator's internal server or by utilizing a RADIUS, SDI, Kerberos, Active Directory, and NT Domain server.

  4. The preshared key is defined in either the IPSec tab of the base group parameters or on the Identity tab of the individual groups.

  5. Split Tunneling allows remote users to access the Internet and local LAN in clear text without requiring them to be tunneled through the corporate network. This parameter is pushed to clients and can force them to tunnel everything (default), tunnel specific networks, or let certain networks bypass the tunnel. These networks are predefined in network lists.



CSVPN Exam Cram 2 (Exam 642-511)
CCSP CSVPN Exam Cram 2 (Exam Cram 642-511)
ISBN: 078973026X
EAN: 2147483647
Year: 2002
Pages: 185

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net