hd lab vpn ipsec site to - site

Report

Post on 24-Jul-2015

109 Views

Category:

Education

7 Downloads

Preview:

Click to see full reader

TRANSCRIPT

C1

C1(config)#ac 100 deny ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255

C1(config)#ac 100 deny ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.255

C1(config)#ac 100 per ip any any

C1(config)#ip nat in sou list 100 int s0/1/1 over

C1(config)#crypto isakmp policy 1

C1(config-isakmp)#hash md5

C1(config-isakmp)#au pre

C1(config-isakmp)#encry 3des

C1(config-isakmp)#group 2

C1(config-isakmp)#crypto isakmp key cisco add 11.1.1.18

C1(config-isakmp)#crypto isakmp key hanoi add 11.1.1.22

C1(config)#ac 101 per ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255

C1(config)#ac 102 per ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.255

C1(config)#crypto ipsec tran C2 esp-3des esp-md5-hmac

C1(config)#crypto ipsec tran C3 esp-aes esp-sha-hmac

C1(config)#crypto map VPN 2 ipsec-isakmp

C1(config-crypto-map)#set peer 11.1.1.18

C1(config-crypto-map)#set tran C2

C1(config-crypto-map)#match add 101

C1(config)#crypto map VPN 3 ipsec-isakmp

C1(config-crypto-map)#set peer 11.1.1.22

C1(config-crypto-map)#set tran C3

C1(config-crypto-map)#match add 102

C1(config-crypto-map)#int s0/1/1

C1(config-if)#crypto map VPN

C2

C2(config)#ac 100 deny ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255

C2(config)#ac 100 per ip any any

C2(config)#ip nat in sou list 100 int s0/1/0 over

C2(config)#crypto isakmp policy 1

C2(config-isakmp)#hash md5

C2(config-isakmp)#au pre

C2(config-isakmp)#encry 3des

C2(config-isakmp)#group 2

C2(config-isakmp)#crypto isakmp key cisco add 11.1.1.2

C2(config)#ac 101 per ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255

C2(config)#crypto ipsec tran C1 esp-3des esp-md5-hmac

C2(config)#crypto map VPN 1 ipsec-isakmp

C2(config-crypto-map)#set peer 11.1.1.2

C2(config-crypto-map)#set tran C1

C2(config-crypto-map)#match add 101

C2(config-crypto-map)#int s0/1/0

C2(config-if)#crypto map VPN

C3

C3(config)#ac 100 deny ip 192.168.3.0 0.0.0.255 192.168.1.0 0.0.0.255

C3(config)#ac 100 per ip any any

C3(config)#ip nat in sou list 100 int s0/2/1 over

C3(config)#crypto isakmp policy 1

C3(config-isakmp)#hash md5

C3(config-isakmp)#au pre

C3(config-isakmp)#encry 3des

C3(config-isakmp)#group 2

C3(config-isakmp)#crypto isakmp key hanoi add 11.1.1.2

C3(config)#ac 101 per ip 192.168.3.0 0.0.0.255 192.168.1.0 0.0.0.255

C3(config)#crypto ipsec tran C1 esp-aes esp-sha-hmac

C3(config)#crypto map VPN 1 ipsec-isakmp

C3(config-crypto-map)#set peer 11.1.1.2

C3(config-crypto-map)#set tran C1

C3(config-crypto-map)#match add 101

C3(config-crypto-map)#int s0/2/1

C3(config-if)#crypto map VPN

top related

p4-ipsec: site-to-site and host-to-site vpn with ipsec in
Documents
¸‚อบเขต ซื้อ... · 5.3. 5.220. ipsec...
Documents
cisco - sdm: site-to-site ipsec vpn between asa/pix and ·...
Documents
aws site-to-site vpn · internet protocol security (ipsec)...
Documents
how to create a vpn site-to-site ipsec tunnel mode...
Documents
vpn site-to-site openswan cisco - centos -ipsec (2)
Documents
chapter 8: lab a: configuring a site-to-site vpn using...
Documents
ipsec site-to-site vpn (svti) - cisco...chapter 13-1 cisco...
Documents
remote access vpn ipsec - thegreenbo€¦ · thegreenbowtm...
Documents
3.2 ipsec vpn
Documents
configure site-to-site ipsec virtual private network (vpn
Documents
zywall ipsec vpn - endyendy.com.au/zyxel/_supportdocs/zywall...
Documents
data-only site-to-site ipsec vpn design guidedocstore.mik.ua...
Documents
brocade 5600 vrouter ipsec site-to-site vpn · pdf...
Documents
ipsec vpn
Documents
deployment of ipsec vpn vpn, ipsec, pki, smart cards
Documents
site−to−site ipsec vpn
Documents
configuring windows 2000/xp ipsec for site-to-site vpn
Documents
brocade vyatta network os ipsec site-to-site vpn ... · pdf...
Documents
creating ipsec site-to-site vpn tunnel between a...
Documents