Chapter 64
General VPN Setup
•
•
Modes
The following table shows the modes in which this feature is available:
Firewall Mode
Routed
•
Add or Edit an IPsec Remote Access Connection Profile
The Add or Edit IPsec Remote Access Connection Profile dialog box has a navigation pane that lets you
select basic or advanced elements to configure.
Add or Edit IPsec Remote Access Connection Profile Basic
The Add or Edit IPsec Remote Access Connection Profile Basic dialog box lets you configure common
attributes for IPsec connections.
Fields
•
•
•
OL-20339-01
Name—Specifies the name or IP address of the IPsec connection.
–
ID Certificate—Specifies the name of the ID certificate, if available.
–
IPsec Protocol—Indicates whether the IPsec protocol is enabled. You enable this protocol on
–
the Add or Edit IPsec Remote Access Connection, Basic dialog box.
L2TP/IPsec Protocol—Indicates whether the L2TP/IPsec protocol is enabled. You enable this
–
protocol on the Add or Edit IPsec Remote Access Connection, Basic dialog box.
–
Group Policy—Indicates the name of the group policy for this IPsec connection.
Add or Edit—Opens the Add or Edit IPsec Remote Access Connection Profile dialog box.
Delete—Removes the selected server group from the table. There is no confirmation or undo.
Security Context
Transparent Single
—
•
Name—Identifies the name of the connection.
IKE Peer Authentication—Configures IKE peers.
Pre-shared key—Specifies the value of the pre-shared key for the connection. The maximum
–
length of a pre-shared key is 128 characters.
Identity Certificate—Selects the name of an identity certificate, if any identity certificates are
–
configured and enrolled.
Manage—Opens the Manage Identity Certificates dialog box, on which you can add, edit,
–
delete, export, and show details for a selected certificate.
User Authentication—Specifies information about the servers used for user authentication. You can
configure more authentication information in the Advanced section.
–
Server Group—Selects the server group to use for user authentication. the default is LOCAL.
If you select something other than LOCAL, the Fallback check box becomes available.
–
Manage—Opens the Configure AAA Server Groups dialog box.
Add or Edit an IPsec Remote Access Connection Profile
Multiple
Context
System
—
—
Cisco ASA 5500 Series Configuration Guide using ASDM
64-71