CHAPTER
32-1
User Guide for Cisco Security Manager 4.4
OL-28826-01
32
Managing Remote Access VPNs on IOS and PIX
6.3 Devices
You can configure and manage remote access IPsec on devices running Cisco IOS Software or PIX 6.3,
and SSL VPNs on IOS 12.4(6)T or higher devices (but not on PIX devices). For more information on the
specific device models supported, see Understanding Devices Supported by Each Remote Access VPN
Technology, page 29-8.
The configuration of these remote access VPNs are the same for these device types. ASA and PIX 7.0+
devices use different configurations for remote access VPNs (as explained in Chapter 30, “Managing
Remote Access VPNs on ASA and PIX 7.0+ Devices”).
The topics in this chapter explain how to configure policies that are specific to IOS and PIX 6.3 devices.
Additionally, review the following topics for more information about remote access VPNs:
• Understanding Remote Access VPNs, page 29-1
• Understanding Devices Supported by Each Remote Access VPN Technology, page 29-8
• Discovering Remote Access VPN Policies, page 29-12
• Using the Remote Access VPN Configuration Wizard, page 29-13
–
Creating IPSec VPNs Using the Remote Access VPN Configuration Wizard (IOS and PIX 6.3
Devices), page 29-35
–
Creating SSL VPNs Using the Remote Access VPN Configuration Wizard (IOS Devices),
page 29-31
This chapter contains the following topics:
• Overview of Remote Access VPN Policies for IOS and PIX 6.3 Devices, page 32-2
• Configuring an IPsec Proposal on a Remote Access VPN Server (IOS, PIX 6.3 Devices), page 32-3
• Configuring High Availability in Remote Access VPNs (IOS), page 32-11
• Configuring User Group Policies, page 32-13
• Configuring an SSL VPN Policy (IOS), page 32-14