Click Next. The router local user
database will be used for authentication with the client policy group.
Step 11. Click the Add button in the Group Authorization and User Group Policy
window to create a specific user policy group (see Figure 4-6).
Figure 4-6 Adding VPN Client Group Policies
Step 12. Enter a VPN client-group name and a chosen preshared key.
Step 13. Check the Pool Information check box, click the Create a New Pool radio
button, and enter the Starting IP Address and Ending IP Address of the VPN
client pool.
68 Con?¬?guring Easy VPN Server Using Cisco SDM
NOTE: The addresses in the pool are assigned to new VPN clients as they
connect. Choose an address range or network that is not already in use and that
can be accurately de?¬?ned by a subnet mask. The addresses chosen do not need
to be associated to a physical interface on the router.
CAUTION: Be sure to adjust/edit any ACL in a remote LAN segment or ?¬?rewalls
to accommodate the addresses programmed in any VPN address pool(s).
NOTE: On the DNS/WINS tab, con?¬?gure any corporate DNS or WINS server
addresses that the remote VPN client needs to reference.
Step 14. Click OK and then click Next in the Group Authorization and User Group
Policies window.
Pages:
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73