Scribd
Upload
25 views

Config Crypto

The document contains configuration details for routers R1 and R2 to establish an IPSec VPN tunnel between them. R1 has an interface with IP 101.0.0.1 and R2 has an interface with IP 102.0.0.1. They are configured with the same transform sets, crypto maps, and access lists to permit IPSec encrypted traffic between the 192.168.1.0/24 and 192.168.2.0/24 networks.

Uploaded by

Kelvin Luu
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
25 views

Config Crypto

The document contains configuration details for routers R1 and R2 to establish an IPSec VPN tunnel between them. R1 has an interface with IP 101.0.0.1 and R2 has an interface with IP 102.0.0.1. They are configured with the same transform sets, crypto maps, and access lists to permit IPSec encrypted traffic between the 192.168.1.0/24 and 192.168.2.0/24 networks.

Uploaded by

Kelvin Luu
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 2

C u hnh: Trn R1:

R1#sho run Building configuration... ! !crypto isakmp policy 1 hash md5 authentication pre-share group 2 ! crypto isakmp key pronet address 102.0.0.1 crypto ipsec transform-set setR1 esp-des esp-md5-hmac crypto map mapR1 1 ipsec-isakmp set peer 102.0.0.1 set transform-set setR1 match address ACL_VPN ! interface Loopback0 ip address 192.168.1.1 255.255.255.0 ! interface FastEthernet0/0 no ip address shutdown duplex auto speed auto ! interface Serial0/0 ip address 101.0.0.1 255.255.255.0 clock rate 2000000 crypto map mapR1 ! interface FastEthernet0/1 no ip address shutdown duplex auto speed auto ! interface Serial0/1 no ip address shutdown clock rate 2000000 ! ip route 0.0.0.0 0.0.0.0 Serial0/0 ! ip http server no ip http secure-server ! ip access-list extended ACL_VPN permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255 ! (b qua) !end

Trn R2:
R2#sho run !(b qua) ! crypto isakmp policy 1 hash md5 authentication pre-share group 2 ! crypto isakmp key pronet address 101.0.0.1 ! crypto ipsec transform-set setR2 esp-des esp-md5-hmac ! crypto map mapR2 1 ipsec-isakmp set peer 101.0.0.1 set transform-set setR2 match address ACL_VPN ! interface Loopback0 ip address 192.168.2.1 255.255.255.0 ! interface FastEthernet0/0 no ip address shutdown duplex auto speed auto ! CW interface Serial0/0 ip address 102.0.0.1 255.255.255.0 clock rate 2000000 crypto map mapR2 ! interface FastEthernet0/1 no ip address shutdown duplex auto speed auto ! interface Serial0/1 no ip address shutdown clock rate 2000000 ! ip route 0.0.0.0 0.0.0.0 Serial0/0 ! ip http server no ip http secure-server ! ip access-list extended ACL_VPN permit ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255 ! !end

You might also like