Show IP Protocols: Site-to-site IPSec VPN Configuration Example (pt-ipsec.pkt), using Packet Tracer Version 5.2

Tuesday, May 12, 2015

Site-to-site IPSec VPN Configuration Example (pt-ipsec.pkt), using Packet Tracer Version 5.2

Packet Tracer Version 5.2 Site-to-site IPSec VPN Configuration Example (pt-ipsec.pkt)

Summary of configuration steps is in below.

1. Define Transform Sets.
!

crypto ipsec transform-set MOSTSECURE esp-aes 256 esp-sha-hmac
!

2. Define IPSec Crypto Map

!
access-list 100 permit ip 10.1.1.0 0.0.0.255 10.2.2.0 0.0.0.255
!
crypto map PT-IPSEC 1000 ipsec-isakmp 
 description Packet Tracer IPSEC Test Crypto Map
 set peer 172.16.2.1
 set pfs group5
 set security-association lifetime seconds 120
 set transform-set MOSTSECURE 
 match address 100
!

3. Define ISAKMP policy to protect previous IPSec Security Association

!
crypto isakmp policy 100
 encr aes 256
 authentication pre-share
 group 5
 lifetime 60
!

4. Define Authentication Key. In this simple example, I just use simple "Pre-Shared Key" authentication.

!
crypto isakmp key samekey address 172.16.2.1
!

5. Attach IPSec Crypto Map to outgoing interface.

!
interface Serial0/0/0
 ip address 172.16.1.1 255.255.255.252
 crypto map PT-IPSEC
!

Do you like this post? You really should consider Subscribing by Email!

Show IP ProtocolsIP

Pages

Do you like this site? Remember to share it to all your friends on Facebook and Twitter!

Tuesday, May 12, 2015

Site-to-site IPSec VPN Configuration Example (pt-ipsec.pkt), using Packet Tracer Version 5.2

No comments:

Post a Comment

Popular Posts

CCNA Exploration 4.0, Semester 2, Companion Practices by Li-Ji Hong, for Cisco Network Academy students

CCNA Exploration 4.0, Semester 3, Companion Practices by Li-Ji Hong, for Cisco Network Academy students

CCNA Exploration 4.0, Semester 4, Companion Practices by Li-Ji Hong, for Cisco Network Academy students

Total Pageviews (Since 2010)