Dear All, I'm trying to configure 2600 router with c2600-ik9o3s-mz.122-8.T.bin image file to be VPN gateway, I'm using the Cisco VPN 3.6 client, every thing goes well almost, where the client get authenticated and get it's private IP address from the pool, but I'm still have a problem where the packets sent from the client is encrypted but no encrypted received packets! So no response at all !
Here is my router configuration : version 12.2 service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname IDS-FW ! logging console informational aaa new-model ! ! aaa authentication login userauthen group tacacs+ local aaa authorization network groupauthor local aaa session-id common enable secret 5 xxxxxx ! crypto isakmp policy 3 encr 3des authentication pre-share group 2 ! crypto isakmp client configuration group vpngroup key forest dns 172.16.1.40 pool IPpool acl 102 ! ! crypto ipsec transform-set myset esp-3des esp-sha-hmac ! ! crypto dynamic-map dynmap 10 set transform-set myset ! ! crypto map clientmap isakmp authorization list groupauthor crypto map clientmap client configuration address respond crypto map clientmap 10 ipsec-isakmp dynamic dynmap interface Ethernet0/0 ip address 172.31.0.5 255.255.0.0 no ip mroute-cache half-duplex -- interface Serial0/1 ip address 212.22.222.2 255.255.255.252 no ip mroute-cache crypto map clientmap ip local pool IPpool 172.31.0.150 172.31.0.200 access-list 102 permit ip 172.16.0.0 0.15.255.255 172.31.0.0 0.0.0.127 ip route 0.0.0.0 0.0.0.0 212.22.222.1 Thanks for you. Mohannad Khuffash -- Mohannad Khuffash Network Administrator Palestine Telecom Tel: 00970-9-2390509 Mobile:00970-59-579528 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=55302&t=55302 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]