Cisco Cisco Clean Access 3.5
C H A P T E R
6-1
Cisco Clean Access Server Installation and Administration Guide
OL-7045-01
6
IPSec/L2TP/PPTP/PPP on the CAS
This chapter discusses how to configure the encryption mechanisms supported by the CAS.
•
•
•
•
•
•
This chapter describes how to configure secure tunnels between users and the CAS. If you require
support for a larger VPN base, release 3.5(3) and above of Cisco Clean Access allows you to deploy a
VPN concentrator in front of the Clean Access Server. In this case, see
support for a larger VPN base, release 3.5(3) and above of Cisco Clean Access allows you to deploy a
VPN concentrator in front of the Clean Access Server. In this case, see
for details.
Overview
The Cisco Clean Access Server itself supports secure Virtual Private Network (VPN) connections
between the Clean Access Server (CAS) and end user devices. The CAS supports VPN connections via
PPTP, L2TP/IPSec or native IPSec clients. You can use Windows 2000, Windows XP, or other
Pre-Shared Key VPN clients to use this feature. Note that each Clean Access Server supports the
following number of concurrent VPN connections:
between the Clean Access Server (CAS) and end user devices. The CAS supports VPN connections via
PPTP, L2TP/IPSec or native IPSec clients. You can use Windows 2000, Windows XP, or other
Pre-Shared Key VPN clients to use this feature. Note that each Clean Access Server supports the
following number of concurrent VPN connections:
•
IPSec — no limit is in place
•
PPTP — 64 tunnels
•
L2TP — 64 tunnels
Figure 6-1
Encrypted Connections
Clean Access
switch
L3 Router
encrypted connection
Server