 |
Step by step create the following...
- ISAKMP tunnel (IKE Phase 1) included: Hashing + Authentication + Diffie Hellman Group
- IPSec tunnel (IKE Phase 2) included: Encryption + Lifetime
- Access-list to permit (Interesting traffic)
- crypto map
- apply to interface
After all this configuration
R1# ping 10.0.1.1 source lo0 (!!!must be successful)
R2# ping 192.168.1.1 source lo0 (!!!must be successful)
>>>>>>>>>>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<<<<<<<
Hashing = MD5 / SHA
Authentication = pre-shared key / certificate
Diffie Hellman = Diffie Hellman Group 1 (or) 2 (or) 5
Encryption = DES / 3DES / AES 128 / AES 256 (AES 256 is recommended)
>>>>>>>>>>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<<<<<<<
R2# ping 192.168.1.1 source lo0 (!!!must be successful)
>>>>>>>>>>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<<<<<<<
Hashing = MD5 / SHA
Authentication = pre-shared key / certificate
Diffie Hellman = Diffie Hellman Group 1 (or) 2 (or) 5
Encryption = DES / 3DES / AES 128 / AES 256 (AES 256 is recommended)
>>>>>>>>>>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<<<<<<<
No comments:
Post a Comment