Configure a PIX 501 or 506E as an Easy VPN Client
Easy VPN Remote configuration

The Easy VPN Server controls the policy enforced on the PIX Security Appliance Easy VPN Remote device. However, to establish the initial connection to the Easy VPN Server, some configuration must be completed locally. This configuration can be done by using Cisco PIX Device Manager (PDM) or by using the command line interface as described in the following points .

If the Easy VPN remote uses pre-shared keys, enter the following command:

vpnclient vpngroup {groupname} password {preshared_key}

Replace groupname with an alphanumeric identifier for the VPN group. Replace preshared_key with the encryption key to use for securing communications to the Easy VPN Server.

If the Easy VPN Server uses extended authentication (XAUTH) to authenticate the PIX Security Appliance client, enter the following command:

vpnclient username {xauth_username} password {xauth_password}

Replace xauth_username with the username assigned for XAUTH. Replace xauth_passwordwith the password assigned for XAUTH.

Identify the remote Easy VPN Server by entering the following command:

vpnclient server {ip_primary} [ip_secondary_n]

Replace ip_primary with the IP address of the primary Easy VPN Server. Replace ip_secondary_n with the IP address of one or more Easy VPN Servers. A maximum of eleven Easy VPN Servers are supported. The list of servers consists of one primary and up to ten secondary servers.