Welcome to Scribd!

ACL Commands

Uploaded by

0% found this document useful (0 votes)

4 views1 page

The document describes the configuration of an IPSec VPN between routers R1 and BR1. Access control lists are created to permit traffic between the 192.168.70.0/26 and 192.168.0.0/24 networks. IKEv1 is configured with pre-shared keys to establish security associations using AES-256 encryption and SHA-HMAC authentication. Crypto maps are configured on each router to apply the IPSec policies and match the appropriate access lists.

Original Description:

Copyright

Available Formats

TXT, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

4 views1 page

ACL Commands

Uploaded by

Kyaw Zin Nyein

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 1

Search inside document

ACL commands

---------------------------------
(x2) access-list 100 deny ip 192.168.70.0 0.0.0.63 host 192.168.100.5
access-list 100 permit ip any any (x2)
----------------------------------

int fa0/1.70 (fa0/0.70)

access-group 100 in
-----------------------------------------

Ipsec
ON R3#
access-list 110 permit ip 192.168.70.0 0.0.0.63 192.168.0.0 0.0.0.255

crypto isakmp policy 10

encryption aes 256
authentication pre-share
group 5
exit
crypto isakmp key (*vpnpa55*) address 200.0.0.2

crypto ipsec transform-set VPN-SET esp-aes esp-sha-hmac

R1(config)# crypto map VPN-MAP 10 ipsec-isakmp

R1(config-crypto-map)# description VPN connection to BR1
R1(config-crypto-map)# set peer 200.0.0.2
R1(config-crypto-map)# set transform-set VPN-SET
R1(config-crypto-map)# match address 110
R1(config-crypto-map)# exit

R1(config)# interface s0/1/0

R1(config-if)# crypto map VPN-MAP

---------------------------------------------------
On BR1 router
(config)# access-list 110 permit ip 192.168.0.0 0.0.0.255 192.168.70.0 0.0.0.63
BR1(config)# crypto isakmp policy 10
BR1(config-isakmp)# encryption aes 256
BR1(config-isakmp)# authentication pre-share
BR1(config-isakmp)# group 5
BR1(config-isakmp)# exit
BR1(config)# crypto isakmp key vpnpa55 address 100.0.0.1
BR1(config)# crypto ipsec transform-set VPN-SET esp-aes esp-sha-hmac

BR1(config)# crypto map VPN-MAP 10 ipsec-isakmp

BR1(config-crypto-map)# description VPN connection to R3
BR1(config-crypto-map)# set peer 100.0.0.1
BR1(config-crypto-map)# set transform-set VPN-SET
BR1(config-crypto-map)# match address 110
BR1(config-crypto-map)# exit

R3(config)# interface s0/3/1

R3(config-if)# crypto map VPN-MA

#show crypto ipsec sa

Cisco CCNA Command Guide: An Introductory Guide for CCNA & Computer Networking Beginners: Computer Networking, #3
From Everand
Cisco CCNA Command Guide: An Introductory Guide for CCNA & Computer Networking Beginners: Computer Networking, #3
Ramon Nastase
No ratings yet
Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configuration
From Everand
Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configuration
Mulayam Singh
No ratings yet
Vps Toolkit
From Everand
Vps Toolkit
Davide Gatti
No ratings yet
Network with Practical: ALL PACKET TRACER LABS
From Everand
Network with Practical: ALL PACKET TRACER LABS
MULAYAM SINGH
No ratings yet
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
From Everand
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
Mulayam Singh
No ratings yet
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
From Everand
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
Redouane MEDDANE
No ratings yet
Some Tutorials in Computer Networking Hacking
From Everand
Some Tutorials in Computer Networking Hacking
Dr. Hidaia Mahmood Alassouli
No ratings yet
ST Asd Cra23 Bta
Document6 pages
ST Asd Cra23 Bta
Fabiola Fonseca
No ratings yet
ENSA - Module - 5-ACL Lab
Document2 pages
ENSA - Module - 5-ACL Lab
Justen Biber
No ratings yet
ACL Establecida
Document5 pages
ACL Establecida
richard_968
No ratings yet
Ccna 2-Práctica Final
Document4 pages
Ccna 2-Práctica Final
Diana Duran
No ratings yet
Rse Cisco Ccna2
Document5 pages
Rse Cisco Ccna2
Chris Lex
No ratings yet
Codigo-Copia Pega
Document5 pages
Codigo-Copia Pega
William Ramos Paucar
No ratings yet
CMCIS154 Chapt 05
Document2 pages
CMCIS154 Chapt 05
John Smith
No ratings yet
Untitled
Document2 pages
Untitled
Eduardo Valencia
No ratings yet
Ios
Document11 pages
Ios
carrotmadman6
No ratings yet
Cisco UC5XX Default Conf 111
Document12 pages
Cisco UC5XX Default Conf 111
LA-ZOUBE GAEL
No ratings yet
ACL Config
Document18 pages
ACL Config
Yasser Lyraa
No ratings yet
4.2.2.13 Commands
Document3 pages
4.2.2.13 Commands
Still gg
No ratings yet
ExamenJerson y Josue CCNA3
Document34 pages
ExamenJerson y Josue CCNA3
Josue otarola
No ratings yet
Create An ACL For Split Tunneling
Document3 pages
Create An ACL For Split Tunneling
geekwrestler
No ratings yet
List Access
Document9 pages
List Access
Victor Fernandez Atalá
No ratings yet
Examenfinal
Document15 pages
Examenfinal
Josue otarola
No ratings yet
Exercices ACL
Document9 pages
Exercices ACL
Papa Niang
No ratings yet
Site 2 Site VPN
Document31 pages
Site 2 Site VPN
winter00
No ratings yet
Comandos Varios CCNP Switch
Document5 pages
Comandos Varios CCNP Switch
Nicolás Herrera
No ratings yet
Lab CCNA Security ACL
Document4 pages
Lab CCNA Security ACL
Angel Scz
No ratings yet
Access-List T2
Document3 pages
Access-List T2
BABU E
No ratings yet
ACL Challenge Correction
Document1 page
ACL Challenge Correction
fstt
No ratings yet
EXAMEN
Document15 pages
EXAMEN
Josue otarola
No ratings yet
(CCNA) Cisco Commands Cheat Sheet #4
Document3 pages
(CCNA) Cisco Commands Cheat Sheet #4
Md IrfAN
No ratings yet
ENSA Final Skills Exam (PTSA)
Document7 pages
ENSA Final Skills Exam (PTSA)
Víctor Morocho Montoya
No ratings yet
Hands On Skills Assessment Script
Document6 pages
Hands On Skills Assessment Script
artifexe
No ratings yet
Configure Ip Acls To Mitigate Attacks: Objectives
Document3 pages
Configure Ip Acls To Mitigate Attacks: Objectives
Lupita Vázquez
No ratings yet
Ejercicio 4.4.1.2 Albeiro Pedrozo
Document15 pages
Ejercicio 4.4.1.2 Albeiro Pedrozo
albeiro pedrozo
No ratings yet
Nuevo Documento de Texto
Document13 pages
Nuevo Documento de Texto
karo
No ratings yet
7
Document15 pages
7
mouradwac87
No ratings yet
09 - How To Connect Securely Between 2 Regional Offices Using CISCO VPN
Document4 pages
09 - How To Connect Securely Between 2 Regional Offices Using CISCO VPN
Johnpatrick Dejesus
No ratings yet
Comando Fortigate
Document3 pages
Comando Fortigate
Niverson Vivinha
No ratings yet
Security
Document14 pages
Security
jokate6848
No ratings yet
Ccnas Chp4 Ptacta Acl Instructor
Document4 pages
Ccnas Chp4 Ptacta Acl Instructor
Amine Sahli
No ratings yet
Commands Boson Netsim
Document12 pages
Commands Boson Netsim
Antonio Silva
No ratings yet
Lista de Comandos Examen
Document1 page
Lista de Comandos Examen
Pepe Gonzalez
No ratings yet
11 7 1
Document5 pages
11 7 1
soydeoviedo8331
No ratings yet
BT
Document7 pages
BT
Long Nhật
No ratings yet
Asa
Document6 pages
Asa
fundacionunnuevos2023
No ratings yet
Answer CCNA Discovery 3 Ver 4 0 Chapter 8 U Can Get 90 2%
Document9 pages
Answer CCNA Discovery 3 Ver 4 0 Chapter 8 U Can Get 90 2%
poentren
100% (10)
Configuring and Troubleshooting Acls: Access Control Lists
Document26 pages
Configuring and Troubleshooting Acls: Access Control Lists
ธนวรรณ โภคาอนนต์
No ratings yet
4.4.1.2 Packet Tracer - Configure IP ACLs To Mitigate Attacks
Document12 pages
4.4.1.2 Packet Tracer - Configure IP ACLs To Mitigate Attacks
Libaniel Castrillon Carvajal
No ratings yet
Sba 123
Document17 pages
Sba 123
opticdashy10
No ratings yet
Sec 5
Document54 pages
Sec 5
mostafa elsayed
No ratings yet
Eveng Dockers Ip File 280523
Document7 pages
Eveng Dockers Ip File 280523
Ayan leghari
No ratings yet
Informe Lab Cisco
Document8 pages
Informe Lab Cisco
Mauricio Salazar
No ratings yet
Class 13
Document5 pages
Class 13
jokate6848
No ratings yet
Configuracion de CEI
Document4 pages
Configuracion de CEI
jose aguilar
No ratings yet
Easy-Vpn Conf
Document3 pages
Easy-Vpn Conf
Godfre Yohuno
No ratings yet
Comandos Packet Tracer
Document4 pages
Comandos Packet Tracer
Remigio Alvino Pillco Pillajo
No ratings yet
Untitled
Document3 pages
Untitled
Eduardo Valencia
No ratings yet
Next-Generation switching OS configuration and management: Troubleshooting NX-OS in Enterprise Environments
From Everand
Next-Generation switching OS configuration and management: Troubleshooting NX-OS in Enterprise Environments
Mamta Devi
No ratings yet