/gist:2413887

## gistfile1.txt
!Pix config
vpnclient server Public_IP
vpnclient mode network-extension-mode
vpnclient vpngroup mygroup password ********
vpnclient enable

------------------------------------------------
!ASA config

      object network NETWORK_OBJ_192.168.0.200_29
        subnet 192.168.0.200 255.255.255.248
      group-policy securesub_evpn internal
      group-policy securesub_evpn attributes
        vpn-tunnel-protocol ikev1
        dns-server value 192.168.0.25 4.2.2.2
        default-domain value securesub.net
      exit
      tunnel-group securesub_evpn type remote-access
      tunnel-group securesub_evpn general-attributes
        default-group-policy securesub_evpn
        address-pool  VPN
      tunnel-group securesub_evpn ipsec-attributes
        ikev1 pre-shared-key **********
      crypto ikev1 policy 30
        encryption 3des
        hash md5
      crypto ikev1 enable  outside
      crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
      crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
      crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
      crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
      crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
      crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
      crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
      crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
      crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
      crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
      crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set  pfs group1
      crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set  ikev1 transform-set  ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
      nat (inside,outside) 2 source static any any destination static NETWORK_OBJ_192.168.0.200_29 NETWORK_OBJ_192.168.0.200_29
	!Pix config
	vpnclient server Public_IP
	vpnclient mode network-extension-mode
	vpnclient vpngroup mygroup password ********
	vpnclient enable

	------------------------------------------------
	!ASA config

	object network NETWORK_OBJ_192.168.0.200_29
	subnet 192.168.0.200 255.255.255.248
	group-policy securesub_evpn internal
	group-policy securesub_evpn attributes
	vpn-tunnel-protocol ikev1
	dns-server value 192.168.0.25 4.2.2.2
	default-domain value securesub.net
	exit
	tunnel-group securesub_evpn type remote-access
	tunnel-group securesub_evpn general-attributes
	default-group-policy securesub_evpn
	address-pool VPN
	tunnel-group securesub_evpn ipsec-attributes
	ikev1 pre-shared-key **********
	crypto ikev1 policy 30
	encryption 3des
	hash md5
	crypto ikev1 enable outside
	crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
	crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
	crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
	crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
	crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
	crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
	crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
	crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
	crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
	crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
	crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
	crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
	nat (inside,outside) 2 source static any any destination static NETWORK_OBJ_192.168.0.200_29 NETWORK_OBJ_192.168.0.200_29