The Easy VPN Server controls the policy enforced on the PIX Security
Appliance Easy VPN Remote device. However, to establish the initial connection
to the Easy VPN Server, some configuration must be completed locally. This
configuration can be done by using Cisco PIX Device Manager (PDM) or by using
the command line interface as described in the following points
.
If the
Easy VPN remote uses pre-shared keys, enter the following command:
vpnclient vpngroup {groupname} password
{preshared_key}
Replace groupname
with an alphanumeric identifier for the VPN group. Replace
preshared_key with the encryption key to use for securing
communications to the Easy VPN Server.
If the Easy VPN Server uses
extended authentication (XAUTH) to authenticate the PIX Security Appliance
client, enter the following command:
vpnclient username
{xauth_username} password
{xauth_password}
Replace
xauth_username with the username assigned for XAUTH.
Replace xauth_passwordwith the password assigned for
XAUTH.
Identify the remote Easy VPN Server by entering the following command:
vpnclient server {ip_primary}
[ip_secondary_n]
Replace ip_primary
with the IP address of the primary Easy VPN Server. Replace
ip_secondary_n with the IP address of one or more Easy VPN
Servers. A maximum of eleven Easy VPN Servers are supported. The list of
servers consists of one primary and up to ten secondary servers.