====== Certificates ======

====== preshared key ======

<code>
!
crypto isakmp policy 1
 encr 3des
 hash md5
 authentication pre-share
 group 2
crypto isakmp key MyCrypTKey address <ipv4 peer>
!
!
crypto ipsec transform-set FMS-Transform esp-3des esp-md5-hmac
!
crypto map Fimasys-map 1 ipsec-isakmp
 set peer <ipv4 peer>
 set security-association lifetime seconds 86400
 set transform-set FMS-Transform
 set pfs group2
 match address 120
!
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.66.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.1.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.10.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.0.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.99.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.35.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.3.0 0.0.0.255
access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.4.0 0.0.0.255
!
</code>

The ACL describe which (remote) network are reachable through the IPSec tunnel.