Scribd Logo
Upload

Welcome to Scribd!

  • VPN IPsec

    Uploaded by

    Denisa Prifti
    24 views4 pages

    Original Title

    VPN-IPsec..docx

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    24 views4 pages

    VPN IPsec

    Uploaded by

    Denisa Prifti

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    VPN-IPsec.

    pkt

    R0-Config;
    ip dhcp excluded-address 192.168.102.1 192.168.102.5
    !
    ip dhcp pool LANA
    network 192.168.102.0 255.255.255.0
    default-router 192.168.102.1
    !
    !
    license udi pid CISCO2901/K9 sn FTX1524882N-
    license boot module c2900 technology-package securityk9
    !
    !
    !
    crypto isakmp policy 10
    encr aes 256
    authentication pre-share
    group 5
    !
    crypto isakmp key mykey address 2.2.2.2
    !
    crypto ipsec transform-set RA esp-aes 256 esp-sha-hmac
    !
    crypto map mymap 10 ipsec-isakmp
    set peer 2.2.2.2
    set pfs group5
    set security-association lifetime seconds 86400
    set transform-set RA
    match address 100
    !
    !
    interface GigabitEthernet0/0
    ip address 1.1.1.1 255.255.255.252
    duplex auto
    speed auto
    crypto map mymap
    !
    interface GigabitEthernet0/1
    ip address 192.168.102.1 255.255.255.0
    duplex auto
    speed auto
    !
    interface Vlan1
    no ip address
    shutdown
    !
    ip classless
    ip route 0.0.0.0 0.0.0.0 1.1.1.2
    !
    ip flow-export version 9
    !
    !
    access-list 100 permit ip 192.168.102.0 0.0.0.255 172.16.102.0 0.0.0.255
    !

    R1 config:
    ip dhcp excluded-address 172.16.102.1 172.16.102.5
    !
    ip dhcp pool LANB
    network 172.16.102.0 255.255.255.0
    default-router 172.16.102.1
    !
    !
    license udi pid CISCO2901/K9 sn FTX1524WT38-
    license boot module c2900 technology-package securityk9
    !
    !
    !
    crypto isakmp policy 10
    encr aes 256
    authentication pre-share
    group 5
    !
    crypto isakmp key mykey address 1.1.1.1
    !
    !
    !
    crypto ipsec transform-set RB esp-aes 256 esp-sha-hmac
    !
    crypto map mymap 10 ipsec-isakmp
    set peer 1.1.1.1
    set pfs group5
    set security-association lifetime seconds 86400
    set transform-set RB
    match address 100
    !
    !
    spanning-tree mode pvst
    !
    interface GigabitEthernet0/0
    ip address 2.2.2.2 255.255.255.252
    duplex auto
    speed auto
    crypto map mymap
    !
    interface GigabitEthernet0/1
    ip address 172.16.102.1 255.255.255.0
    duplex auto
    speed auto
    !
    interface Vlan1
    no ip address
    shutdown
    !
    ip classless
    ip route 0.0.0.0 0.0.0.0 2.2.2.1
    !
    ip flow-export version 9
    !
    !
    access-list 100 permit ip 172.16.102.0 0.0.0.255 192.168.102.0 0.0.0.255
    !

    You might also like