Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter 3. Practice Lab 3 > Section 5.0: IPSec Configuration (10 points)

Section 5.0: IPSec Configuration (10 points)

5.1. IPSec Remote Access to VPN3000 Concentrator (6 points)

  1. Configure the IPSec client in VLAN-13 to the VPN3000 concentrator. Use the following parameters.

  2. Configure Group-name lab3-users with password cisco.

  3. Configure internal user authentication. Configure username cisco123 password cisco123 on the concentrator.

  4. Create a VPN-pool of 10.1.6.0/24 for VPN clients.

  5. Configure NAT transparent mode.

  6. Make sure VPN client Test-PC in VLAN-13 can ping all internal networks behind the VPN3000 concentrator through the IPSec tunnel. Do not configure any static route(s) to achieve this task. Configure default-route to 120.5.72.2.

5.2. IPSec LAN-to-LAN Using Preshared (4 points)

  1. Encrypt BGP traffic between AS1 and AS3. Use Loopack1 for BGP and IPSec peering. Configure all other parameters as appropriate.

  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint