chapter 6 - vpn - part 4 - ipsec verifying
TRANSCRIPT
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
1/14
CCNA Advance
Chapter 6
Virtual Private Network - VPN
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
2/14
Verifying IPSec
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
3/14
3
Task 4 – Test and verify IPSec
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
4/144
The show crypto isakmp policy
Command
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
5/145
The show crypto ipsec transform-set
Command
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
6/146
The show crypto ipsec sa Command
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
7/147
The show crypto map Command
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
8/14
8
The debug crypto Commands
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
9/14
9
Configuration Steps for Site-to-Site
IPsec VPN
1. Establish ISAKMP policy
2. Configure IPsec transform set3. Configure crypto ACL
4. Configure crypto map
5. Apply crypto map to the interface
6. Configure interface ACL
Si Si IP C fi i Ph
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
10/14
10
Site-to-Site IPsec Configuration: Phase
1
Sit t Sit IP C fi ti Ph
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
11/14
11
Site-to-Site IPsec Configuration: Phase
2
Sit t Sit IP C fi ti
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
12/14
12
Site-to-Site IPsec Configuration:
Apply VPN Configuration
Sit t Sit IP C fi ti
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
13/14
13
Site-to-Site IPsec Configuration:
Interface ACL
Ensure that protocols 50 and 51 and UDPport 500 traffic is not blocked on interfaces
used by IPsec.
-
8/16/2019 Chapter 6 - VPN - Part 4 - IPSec Verifying
14/14
Question ?
Thank you !