ตัวอย่างการทำ PPTP VPN (Dial-in) บน Cisco 1700 Series

บทนำ
ทดลองทำบน Cisco 1721 ครับ

คำสั่งที่ต้องใช้ดังนี้

South_Control#sh run
Building configuration...

Current configuration : 1756 bytes
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname South_Control
!
logging queue-limit 100
enable secret 5 $1$w1k.$jtAxIhSrX7cuCUcPjFIcz0
!
username cat privilege 0 secret 5 $1$cjfM$jn899O0yTvug4WfMhkgBB.
username publicshare password 7 02150C5A19031F344E42001A
aaa new-model
!
!
aaa authentication login default local
aaa authentication ppp default local
aaa authorization network default local
aaa session-id common
ip subnet-zero
!
!
no ip domain lookup
ip name-server 61.19.253.134
ip name-server 61.19.253.136
!
vpdn enable
!
vpdn-group 1
! Default PPTP VPDN group
accept-dialin
protocol pptp
virtual-template 1
!
!
!
!
!
interface FastEthernet0
ip address 202.129.49.193 255.255.255.248 secondary
ip address 192.168.9.1 255.255.255.0
ip nat inside
speed auto
!
interface Serial0
bandwidth 128
ip address 202.129.50.242 255.255.255.252
ip nat outside
encapsulation ppp
ip route-cache flow
!
interface Virtual-Template1
ip unnumbered FastEthernet0
ip nat inside
peer default ip address pool vpn1
ppp authentication pap chap
!
ip local pool vpn1 192.168.99.101 192.168.99.150
ip nat inside source list 7 interface Serial0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 202.129.50.241
no ip http server
!
!
!
logging 202.129.16.15
access-list 1 permit 192.168.99.0 0.0.0.255
access-list 7 permit 192.168.9.0 0.0.0.255
!
radius-server authorization permit missing Service-Type
!
line con 0
line aux 0
line vty 0 4
!
end

South_Control#