Cisco ASA 5505 Configuration Manual page 1265

VPN
This chapter describes how to configure a basic VPN connection using the IPsec VPN wizard. It includes
the following sections:
VPN Wizard
•
VPN Tunnel Type
•
Remote Site Peer
•
IKE Policy
•
IPsec Rule
•
• Hosts and Networks
• Remote Access Client
• VPN Client Authentication Method and Name
Client Authentication
•
New Authentication Server Group
•
User Accounts
•
Address Pool
•
Attributes Pushed to Client
•
IPsec Settings (Optional)
•
Summary
•
The adaptive security appliance creates a virtual private network by creating a secure connection across
a TCP/IP network (such as the Internet) that users see as a private connection. It can create
single-user-to-LAN connections and LAN-to-LAN connections. The secure connection is called a
tunnel, and the adaptive security appliance uses tunneling protocols to negotiate security parameters,
create and manage tunnels, encapsulate packets, transmit or receive them through the tunnel, and
unencapsulate them. The adaptive security appliance functions as a bidirectional tunnel endpoint: it can
receive plain packets, encapsulate them, and send them to the other end of the tunnel, where they are
unencapsulated and sent to their final destination. It can also receive encapsulated packets,
unencapsulate them, and send them to their final destination.
The adaptive security appliance performs the following VPN functions:
Establishes tunnels
•
Negotiates tunnel parameters
•
Enforces VPN policies
•
OL-20339-01
C H A P T E R
Cisco ASA 5500 Series Configuration Guide using ASDM
62
62-1