How to configure Cisco 2960 switches

Example for the VPN Configuration of CiscoHere is an example for the VPNconfiguration of Cisco router to green hand.

r1(config)#int f0/0r1(config-if)#ip add 50.50.50.50 255.255.255.0r1(config-if)#no shur1(config-if)#int f1/0r1(config-if)#ip add 20.20.20.20 255.255.255.0r1(config-if)#no shur1(config)#ip route 0.0.0.0 0.0.0.0 20.20.20.21 //Do a default route to make the interoperability over whole network r1(config)#crypto isakmp policy 1r1(config-isakmp)#authentication pre-share //Enable the definition of shared keyr1(config-isakmp)#encryption 3des //Use 3DES encryption algorithmr1(config-isakmp)#hash md5 //Use MD5 hash algorithm to Authenticate the keyr1(config)#crypto isakmp key 0 123 address 20.20.20.21 //Set the shared key to be 123 and the peer addressr1(config)#crypto isakmp transform-set zhao ah-md5-h esp-3des //Transmission mode is zhao, verification is md5 and encryption is 3desr1(config)#accress-list 101 permit ip 50.50.50.0 0.0.0.255 60.60.60.0 0.0.0.255 //Configure ACLr1(config)#crypto map jin 1 ipsec-isakmp //Create crypto map name to be jinr1(config-crypto-map)#set peer 20.20.20.21 //Set the link to the peer IP address

r1(config-crypto-map)#set transfrom-set zhao //Set the transmission mode zhaor1(config-crypto-map)#match address 101 //Set application control listr1(config)#int f0/0r1(config)#crypto map jin //Apply to the interfacer2(config)#int f0/0r2(config-if)#ip add 60.60.60.60 255.255.255.0r2(config-if)#no shur2(config-if)#int f1/0r2(config-if)#ip add 20.20.20.21 255.255.255.0r2(config-if)#no shur2(config)#ip route 0.0.0.0 0.0.0.0 20.20.20.20 //Do a default route to make the interoperability over whole networkr2(config)#crypto isakmp policy 1r2(config-isakmp)#authentication pre-share //Enable the definition of shared keyr2(config-isakmp)#encryption 3des //Use 3DES encryption algorithmr2(config-isakmp)#hash md5 //Use MD5 hash algorithm to Authenticate the keyr2(config)#crypto isakmp key 0 123 address 20.20.20.20 //Set the shared key to be 123 and the peer addressr2(config)#crypto isakmp transform-set zhao ah-md5-h esp-3des //Transmission mode is zhao, verification is md5 and encryption is 3desr2(config)#accress-list 101 permit ip 60.60.60.0 0.0.0.255 50.50.50.0 0.0.0.255 //Configure ACLr2(config)#crypto map jin 1 ipsec-isakmp //Create crypto map name to be jinr2(config-crypto-map)#set peer 20.20.20.21 //Set the link to the peer IP address r2(config-crypto-map)#set transfrom-set zhao //Set the transmission mode zhaor2(config-crypto-map)#match address 101 //Set application control listr2(config)#int f0/0r2(config)#crypto map jinvpcs1:ip 50.50.50.48 50.50.50.50 24vpcs2:ip 50.50.50.49 50.50.50.50 24vpcs3:ip 60.60.60.48 60.60.60.60 24vpcs4:ip 60.60.60.49 60.60.60.60 24

Then for the ping test.

Show is used to see results and the show command will be used as below:View port applicationsr1# show crypto map View IKE negotiationr1# show crypto isakmp policyView Transmission Moder1# show crypto ipsec transform-set More related:

Cisco Switch 3550 Speed Limits to InterfaceEnterprise Network Manager: the Router-on-a-StickCisco Catalyst 3750-X Series ConfigurationsMore Cisco products and Reviews you can visit: http://www.3anetwork.com/blog 3Anetwork.com is a world leading Cisco networking products wholesaler, we wholesale original new Cisco networking equipments, including Cisco Catalyst switches, Cisco routers, Cisco firewalls, Cisco wireless products, Cisco modules and interface cards products at competitive price and ship to worldwide.Our website: http://www.3anetwork.comTelephone:+852-3069-7733

Email:info@3Anetwork.comAddress:23/F Lucky Plaza, 315-321 Lockhart Road, Wanchai, Hongkong

PAGE 2