System information
170 Chapter 4: Configuring Cisco VPN 3000 for Remote Access Using Preshared Keys
• NTP Servers—Network Time Protocol to ensure that all systems use the same time for
ease of synchronizing log entries
• Internal Authentication—Used for user authentication
Configuration | System | Address Management
When an IPSec tunnel is established between a VPN concentrator and client, a new set of IP
addresses is required to identify the endpoints of the tunnel. This section of the VPN Manager
allows you to define how these addresses are managed.
The Assignment portion of Address Management allows you to select the methods that can be
used to assign addresses. Quick Configuration used this portion as part of its setup steps.
The Pools portion of Address Management allows you to define a pool of internal addresses that
the concentrator draws from when assigning addresses to clients.
Configuration | System | Tunneling Protocols
Cisco VPN 3000 Concentrators are capable of establishing tunnels using the three most popular
VPN tunneling protocols:
• PPTP
• L2TP
• IPSec
To provide support for the Microsoft Windows 2000 VPN client, the VPN concentrators also
support L2TP over IPSec.
This section of the VPN Manager allows you to configure the parameters that are associated
with each of these protocols.
Configuration | System | IP Routing
Cisco VPN 3000 Concentrators have the ability to act as routers for IP traffic. This allows the
concentrator to communicate with other routers in the network to determine the best path for
traffic to take. This section of the VPN Manager allows you to configure the following:
• Static Routes—Manually configured routing tables
• Default Gateways—Routes for traffic for which routes cannot be determined
• OSPF—Open Shortest Path First routing protocol
• OSPF Areas—Subnet areas within the OSPF domain
• DHCP—Dynamic Host Configuration Protocol global parameters
chpt_04.fm Page 170 Friday, April 4, 2003 9:19 AM