Configuration manual
50 VPN configuration
NN47928-501NN47928-501
Variable definitions
The following table describes the variables and values for configuring client termination.
Enabling VPN (client)
Complete this procedure to enable VPN.
Procedure steps
Step Action
1 Enter global configuration mode:
configure terminal
2 Enable VPN:
Variable Value
policy-name
A IPsec policy name.
Each policy must have a unique name.
The range is 1 to 63 characters.
Policy name ALL is not allowed.
id-type
The id-type has to match an id type that was set in the remote identity.
The valid values are:
• IPV4 - IP address
• FQDN - Fully Qualified Domain Name
• EMAIL - email address of the user
• KEYID - uniquely identifies the peer
id-value
The id-value has to match the id-value set in the remote identity.
IP-addr-of-BSG
The IP address of this BSG.
lifetime-units
The life time unit. Valid values are secs | mins | hrs
lifetime-value
The life time value.
The range is 5 minutes to 8 hours.
source-IP
The Source IP address of the outbound traffic.
source-subnet-mask
The Network mask of the outbound traffic.
dest-IP
The Destination IP address of the outbound traffic.
dest-subnet-mask
The Destination mask of the outbound traffic.
WAN-interface-type
The valid values are:
ppp - use for DSL
fastethernet - use for direct connection to ethernet or cable modem
WAN-interface-id
The valid values are:
1 - use for DSL
0/9 - user for direct connection to ethernet or cable modem