Assign static address to a VPN user (from IOS router)

Assign static address to a VPN user (from IOS router): Posted by jmarkotic on October 29th, 2003; Hi,
I'm trying to assing a static ip address for a VPN user connecting with
Cisco VPN client to an IOS router. With ip pools it works just fine.
I tried configuration with and without radius but I just can't seem to find
a way to assign static ip to a user. All examples I could find were with ip
pools.

Config without radius:
aaa authentication login autentifikacija_korisnika group radius local
aaa authorization network autorizacija_grupe local
!
crypto isakmp client configuration group mygroup
key mykey
dns 10.24.112.21
domain xxxxxxxx.xx
pool my_pool
acl 199
!
crypto map klijentska_mapa client authentication list
autentifikacija_korisnika
crypto map klijentska_mapa isakmp authorization list autorizacija_grupe
crypto map klijentska_mapa client configuration address respond
crypto map klijentska_mapa 10 ipsec-isakmp dynamic dinamicka_mapa

With radius, when group and user are defined on radius server.
Well, it's pretty much the same with user/group defined on server.

cheers,
jura; Posted by Norbert H. Kunth on October 30th, 2003; "jmarkotic" <jmarkotic@hotmail.com> wrote in message news:<bnpfgk$nl1$1@ls219.htnet.hr>...
[no static addresses for vpn-user]

Hi Jura,

I have the same problem and have not found a way to do this yet.
Fortunately we haven't so many user who need fixed ip addresses. For
this user I use the work-around to configure separate groups with
pools containig just one ip address.

Norbert; Posted by jmarkotic on October 30th, 2003; Yes, that's exactly what I did, but I guess there is no some elegant way to
assign static ip address. Most of our users need static ip address (because
of some definition with printers), so router configuration looks rather
funny.

thanks,
j

"Norbert H. Kunth" <norbert.kunth@rzleipzig.de> wrote in message
news:e8b5221f.0310300113.1a4323e4@posting.google.c om...; Posted by Claude LeFort on November 3rd, 2003; create a second pool and a second group with only one address. the user
will use the group "solopool" with a passkey of "mysolokey" with their
standard username and password. they will always be assigned an address of
"10.0.0.254"

ip local pool solo_pool 10.0.0.254

crypto isakmp client configuration group solopool
key mysolokey
dns 10.24.112.21
domain xxxxxxxx.xx
pool solo_pool
acl 199

Claude
--

*****to e-mail me directly remove NOSPAM in e-mail address*******

"jmarkotic" <jmarkotic@hotmail.com> wrote in message
news:bnpfgk$nl1$1@ls219.htnet.hr...

Similar Posts

How do I assign a email address to shortcut keys or hotkey like in (Microsoft Windows) by Rayyy
How do I assign power setting rights to a regular user? (Help and Support) by SkiOne
Assign static IPs to port of a managed switch (Networking) by Christian Neuner
NAT and static IP address with conexant router (Internet & Broadband) by Infant Newbie
Static Ip's and BT - I have just recieved A BT router with 5 static IP Addresses. However, I want 5 computers in the office to use only one of the addresses. ery Difficult Question (Internet & Broadband) by Nattasian