L2PT VPN 接続 IX2215

IX2215　VPNセンターにL2TP設定を追加

下記設定を追加
-------------------------------------------------------------------------------------

ike nat-traversal

!

ike proposal web_l2tp_ikeprop1 encryption aes-256 hash sha group 1024-bit

ike proposal web_l2tp_ikeprop2 encryption aes hash sha group 2048-bit

ike proposal web_l2tp_ikeprop3 encryption aes hash sha group 1024-bit

ike proposal web_l2tp_ikeprop4 encryption 3des hash sha group 1024-bit

!

ike policy web_l2tp_ikepolicy peer any key 1x2xkxxx web_l2tp_ikeprop1,web_l2tp_ikeprop2,web_l2tp_ikeprop3,web_l2tp_ikeprop4

!

ipsec autokey-proposal web_l2tp_secprop1 esp-aes-256 esp-sha

ipsec autokey-proposal web_l2tp_secprop2 esp-aes esp-sha

ipsec autokey-proposal web_l2tp_secprop3 esp-3des esp-sha

!

ipsec dynamic-map web_l2tp_secpolicy web_vpnlist web_l2tp_secprop1,web_l2tp_secprop2,web_l2tp_secprop3

!

ppp profile web-ppp-l2tp

  authentication request chap

  authentication password kxxxxx aexxxxxx

  authentication password sxxxxx bexxxxxx

  authentication password wxxxxx cexxxxxx

  lcp pfc

  lcp acfc

  ipcp ip-compression

  ipcp provide-ip-address range 192.168.1xx.190 192.168.1xx.199

!

!

interface Tunnel117.0

  description L2TP_#1

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel118.0

  description L2TP_#2

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel119.0

  description L2TP_#3

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel120.0

  description L2TP_#4

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel121.0

  description L2TP_#5

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel122.0

  description L2TP_#6

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel123.0

  description L2TP_#7

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel124.0

  description L2TP_#8

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel125.0

  description L2TP_#9

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!

interface Tunnel126.0

  description L2TP_#10

  ppp binding web-ppp-l2tp

  tunnel mode l2tp-lns ipsec

  ip unnumbered GigaEthernet2.0

  ip tcp adjust-mss auto

  ipsec policy transport web_l2tp_secpolicy

  no shutdown

!