© 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to...

17
© 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre- shared keys

TAGS:

Transcript of © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to...

Page 1: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Network Security 2

Module 4: Configuring Site to Site VPN with Pre-shared keys

Page 2: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Lesson 4.3 Configure a Router with IPSec Using Pre-shared Keys

Module 4: Configuring Site to Site VPN with Pre-shared keys

Page 3: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Configuring IPsec Step 1: Configure transform sets.

Step 2: Configure global IPsec SA lifetimes.

Step 3: Configure crypto ACLs

Step 4: Configure crypto maps

Step 5: Apply the crypto maps to the terminating / originating interface

Page 4: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Page 5: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Step 2 – Create IKE policies

Page 6: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Page 7: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Page 8: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Step 3: Purpose of Crypto ACLs

The peer that initiates the negotiation sends all its policies to the remote peer, and the remote peer tries to find a match with its policies

Page 9: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

ISAKMP Identity

Page 10: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Step 3 – Configure pre-shared keys

Page 11: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Step 4 – Purpose of Crypto Maps

Page 12: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Page 13: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Page 14: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Step 5: Applying Crypto Maps to Interfaces

Page 15: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Page 16: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.

Q and A

Page 17: © 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 4: Configuring Site to Site VPN with Pre-shared keys.

© 2006 Cisco Systems, Inc. All rights reserved.


Chapter 8 Lab A, Configuring a Site-to-Site VPN Using IOS ...

Chapter 8 Lab A, Configuring a Site-to-Site VPN Using IOS ...

Site 2 Site VPN

Site 2 Site VPN

Chapter 71, “Configuring Clientless SSL VPN”

Chapter 71, “Configuring Clientless SSL VPN”

CONFIGURING DYNAMIC MULTIPOINT VPN SPOKE ROUTER IN … · CONFIGURING DYNAMIC MULTIPOINT VPN SPOKE ROUTER ... When using point-to-point GRE and IPsec hub-and-spoke VPN networks, the

CONFIGURING DYNAMIC MULTIPOINT VPN SPOKE ROUTER IN … · CONFIGURING DYNAMIC MULTIPOINT VPN SPOKE ROUTER ... When using point-to-point GRE and IPsec hub-and-spoke VPN networks, the

Site-to-Site VPN · Site-to-Site VPN Avirtualprivatenetwork(VPN)isanetworkconnectionthatestablishesasecuretunnelbetweenremote peersusingapublicsource,suchastheInternetorothernetwork

Site-to-Site VPN · Site-to-Site VPN Avirtualprivatenetwork(VPN)isanetworkconnectionthatestablishesasecuretunnelbetweenremote peersusingapublicsource,suchastheInternetorothernetwork

Application Notes for Configuring SonicWALL VPN for ...

Application Notes for Configuring SonicWALL VPN for ...

Configuring AnyConnect VPN Client Connections · CHAPTER 11-1 Cisco ASA Series VPN CLI Configuration Guide 11 Configuring AnyConnect VPN Client Connections This section describes

Configuring AnyConnect VPN Client Connections · CHAPTER 11-1 Cisco ASA Series VPN CLI Configuration Guide 11 Configuring AnyConnect VPN Client Connections This section describes

Site-to-Site VPN Configuration Examplestel242/exp/05/Site-to-Site VPN... · 7-2 Cisco PIX Firewall and VPN Configuration Guide 78-15033-01 Chapter 7 Site-to-Site VPN Configuration

Site-to-Site VPN Configuration Examplestel242/exp/05/Site-to-Site VPN... · 7-2 Cisco PIX Firewall and VPN Configuration Guide 78-15033-01 Chapter 7 Site-to-Site VPN Configuration

Configuring Remote Access to MPLS VPN

Configuring Remote Access to MPLS VPN

Configuring Cisco VPN

Configuring Cisco VPN

Configuring a Site-to-Site VPN Tunnel Between …...Application Notes for Configuring a Site-to-Site VPN Tunnel Between Avaya Small Office and NetScreen 5XT, and a Dynamic VPN Tunnel

Configuring a Site-to-Site VPN Tunnel Between …...Application Notes for Configuring a Site-to-Site VPN Tunnel Between Avaya Small Office and NetScreen 5XT, and a Dynamic VPN Tunnel

Chapter 8: Lab A: Configuring a Site-to-Site VPN Using ...cs.mty.itesm.mx/laboratorios/ccna-seguridad/Practicas/Practica8... · • Verify site-to-site IPsec VPN configuration ...

Chapter 8: Lab A: Configuring a Site-to-Site VPN Using ...cs.mty.itesm.mx/laboratorios/ccna-seguridad/Practicas/Practica8... · • Verify site-to-site IPsec VPN configuration ...

Example: Configuring a Policy-Based Site-to-Site VPN using ... · Example: Configuring a Policy-Based Site-to-Site VPN using J-Web Last updated: 7/2013 This configuration example

Example: Configuring a Policy-Based Site-to-Site VPN using ... · Example: Configuring a Policy-Based Site-to-Site VPN using J-Web Last updated: 7/2013 This configuration example

Installing, Configuring, and Using a VPN iOS …cech.uc.edu/content/dam/cech/itservices/docs/VPN/VPN_Setup_And_… · Installing, Configuring, and Using a VPN . iOS Walkthrough Guide

Installing, Configuring, and Using a VPN iOS …cech.uc.edu/content/dam/cech/itservices/docs/VPN/VPN_Setup_And_… · Installing, Configuring, and Using a VPN . iOS Walkthrough Guide

Vpn site to site

Vpn site to site

Configuring a Zone-Based Firewall on the Cisco ISA500 · ACL Generated by a Site-to-Site IPsec VPN In this example, a site-to-site VPN was enabled for an existing IPsec Policy ( VPN

Configuring a Zone-Based Firewall on the Cisco ISA500 · ACL Generated by a Site-to-Site IPsec VPN In this example, a site-to-site VPN was enabled for an existing IPsec Policy ( VPN

Configuring a Site-to-Site VPN Tunnel Between RV Series ......Configuring a Site-to-Site VPN Tunnel Between RV Series Routers and ASA 5500 Series Adaptive Security ... DDNS can be

Configuring a Site-to-Site VPN Tunnel Between RV Series ......Configuring a Site-to-Site VPN Tunnel Between RV Series Routers and ASA 5500 Series Adaptive Security ... DDNS can be

Manual for configuring VPN in Windows 7 for configuring VPN in... · Microsoft Word - Manual for configuring VPN in Windows 7 Author: Deepak Sharma Created Date: 9/12/2019 12:56:36

Manual for configuring VPN in Windows 7 for configuring VPN in... · Microsoft Word - Manual for configuring VPN in Windows 7 Author: Deepak Sharma Created Date: 9/12/2019 12:56:36

Configuring Easy VPN on the ASA 5505

Configuring Easy VPN on the ASA 5505

Configuring a VPN Solution

Configuring a VPN Solution