Cisco 7100 Series Especificaciones Pagina 82
- Pagina / 112
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Step 2—Configuring Encryption and an IPSec Tunnel
Cisco 7100 Series VPN Configuration Guide
4-10
Configuring a Different Shared Key
Because preshared keys were specified as the authentication method for policy 1 in the
“Configuring IKE Policies” section on page 3-13, (the policy that will also be used on the
business partner router) complete the following tasks at the headquarters router as well as
the business partner router:
1 Set each peer’s Internet Security Association & Key Management Protocol (ISAKMP)
identity. Each peer’s identity should be set to either its host name or by its IP address.
By default, a peer’s identity is set to its IP address. In this scenario, you only need to
complete this task at the business partner router.
2 Specify the shared keys at each peer. Note that a given preshared key is shared between
twopeers. At a given peer,you could specify the same keyto share with multiple remote
peers; however, a more secure approach is to specify different keys to share between
different pairs of peers.
To configure a different preshared key for use between the headquarters router and the
business partner router, complete the following steps in global configuration mode:
Step Command Purpose
1
hq-sanjose(config)# crypto isakmp key
67890 address 172.16.2.7
At the local peer: Specify the shared key the
headquarters router will use with the business
partner router. This example configures the shared
key 67890 to be used with the remote peer
172.16.2.7 (serial interface 1/0 on the business
partner router).
2
bus-ptnr(config)# crypto isakmp
identity address
At the remote peer: Specify the ISAKMP identity
(address or hostname) the business partner router
will use when communicating with the headquarters
router during IKE negotiations. (This task was
already completed on the headquarters router when
policy 1 was configured in the “Configuring IKE
Policies” section on page 3-13.) This example
specifies the address keyword, which uses IP
address 172.16.2.7 (serial interface 1/0 of the
business partner router) as the identity for the
business partner router.
- Cisco 7100 Series VPN 1
- Configuration Guide 1
- Preface vii 3
- Audience 4
- Organization 5
- Related Documentation 6
- Preface xi 7
- Conventions 8
- Cisco Connection Online 9
- Documentation CD-ROM 10
- Using Cisco IOS Software 11
- Getting Help 12
- Finding Command Options 13
- • controller t1 1 13
- Understanding Command Modes 18
- Summary of Main Command Modes 19
- Router(config-if)# 20
- Router(config-subif)# 20
- Saving Configuration Changes 21
- Saving Configuration Changes 22
- Before You Begin 23
- Considerations 25
- Before You Begin 2-5 27
- Assumptions 29
- Intranet VPN Business 31
- Scenario 31
- Scenario Description 32
- Step 1—Configuring the Tunnel 34
- Step 1—Configuring the Tunnel 35
- Step 3—Configuring Encryption 41
- Configuring IKE Policies 43
- Creating Policies 44
- • RSA signatures method: 45
- Configuring Preshared Keys 46
- Verifying IKE Policies 48
- Configuring IPSec 49
- Creating Crypto Access Lists 51
- Verifying Crypto Access Lists 51
- Defining Transform Sets 52
- Step 3—Configuring Encryption 54
- Verifying Transform Sets 55
- Creating Crypto Map Entries 58
- Verifying Crypto Map Entries 59
- To verify the configuration: 65
- Extranet VPN Business 73
- 67890 address 172.17.2.4 83
- Tunnel mode 88
- Transport mode 88
- Configuring Crypto Maps 89
- Configuring Crypto Maps 93
Relacionado con productos y manuales para Redes Cisco 7100 Series
Redes Cisco VPN 3000 Manual de usuario
(25 paginas)
(25 paginas)
Redes Cisco MCS 7835 Series Manual de usuario
(9 paginas)
(9 paginas)
Redes Cisco 1802W Manual de usuario
(40 paginas)
(40 paginas)
Redes Cisco 4500M Guía de instalación
(32 paginas)
(32 paginas)
Redes Cisco 7120-4T1 - 7120 Router Especificaciones
(24 paginas)
(24 paginas)
Redes Cisco VPN 3000 Guía de usuario
(502 paginas)
(502 paginas)
Redes Cisco EF3116 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco 826 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco 1861 Manual de usuario
(13 paginas)
(13 paginas)
Redes Cisco TES301 Manual de usuario
(52 paginas)
(52 paginas)
Redes Cisco MGBSX1 Manual de usuario
(16 paginas)
(16 paginas)
Redes Cisco 1005 - 1005 Router Manual de usuario
(10 paginas)
(10 paginas)
Redes Cisco PA-2FE-TX Especificaciones
(60 paginas)
(60 paginas)
Redes Cisco 880 Series Manual de usuario
(18 paginas)
(18 paginas)
Redes Cisco 2520-RF - 2520 Router Especificaciones
(116 paginas)
(116 paginas)
Redes Cisco EPC3825 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco DPC3008 Guía de usuario
(44 paginas)
(44 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.156 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales