conf t
host VPNServer
int s0/0
ip add 203.10.10.1 255.255.255.252
no sh
int f0/0
ip add 192.168.2.254 255.255.255.0
no sh
exit
ip route 0.0.0.0 0.0.0.0 203.10.10.2

crypto isakmp policy 10
hash sha
encryption 3des
group 2
authentication pre-share
exit

crypto ipsec transform-set MYSET esp-sha-hmac esp-3des
exit
	
aaa new-model
aaa authentication login AuthenVPN local
aaa authorization network AuthorVPN local
username vnpro password cisco

crypto isakmp client configuration group TestVPN
key cisco123
pool xyz
exit
ip local pool xyz 172.16.1.1 172.16.1.254

crypto dynamic-map MYMAP 10
set transform-set MYSET
reverse-route
exit

crypto map ServerVPN client authentication list AuthenVPN
crypto map ServerVPN isakmp authorization list AuthorVPN
crypto map ServerVPN client configuration address respond
crypto map ServerVPN 100 ipsec-isakmp dynamic MYMAP

access-list 101 permit ip 192.168.1.0 0.0.0.255 any
crypto isakmp client configuration group TestVPN
acl 101
netmask 255.255.255.0
dns 192.168.1.1
exit

int s0/0
crypto map ServerVPN
exit