Define Group Policy for Mode Configuration Push

Define Group Policy for Mode Configuration Push
Several parameters are pushed to the VPN Client from the Easy VPN Server. These
parameters are specified by the group policy assigned to a set of remote VPN Clients. The
major group policy parameters are as follows:
■ IKE preshared key
■ DNS servers
■ Windows Internet Naming Service (WINS) servers
■ DNS domain
■ Local IP address pool
■ Idle timeout
You configure these parameters using the vpngroup command. The syntax for these
commands is as follows:
vpngroup group_name password preshared_key
vpngroup group_name dns-server primary-server [secondary-server]
vpngroup group_name wins-server primary-server [secondary-server]
vpngroup group_name default-domain domain_name
vpngroup group_name address-pool pool_name
vpngroup group_name idle-time seconds
The transform sets that you can use are as follows:
■ ah-md5-hmac
■ ah-sha-hmac
■ esp-aes
■ esp-aes-192
■ esp-aes-256
■ esp-des
■ esp-3des
■ esp-null
■ esp-md5-hmac
■ esp-sha-hmac
Each transform defines either ah or esp (indicating either Authentication Header [AH] or
Encapsulating Security Payload [ESP]). The keyword used in the transform is an algorithm
abbreviation (see Table 14-4).