Shulou(Shulou.com)06/01 Report--

Topology Diagram:

I. configuration of R2

Interface configuration

Interface FastEthernet0/0**ip address 10.135.101.254 255.255.255.0interface GigaEthernet0/3**ip address 11.1.1.2 255.255.255.252crypto map VP1

Tunnel configuration

Crypto isakmp key 12345 11.1.1.1 255.255.255.255

!

Crypto isakmp policy 1

Group 2

Hash md5

!

Crypto ipsec transform-set p2

Transform-type esp-des esp-md5-hmac

!

Crypto map VP1 0 ipsec-isakmp

Set peer 11.1.1.1

Set pfs group2

Set transform-set p2

Match address vpacl

Traffic configuration of interest

Ip access-list extended vpacl

Permit ip 10.135.101.0 255.255.255.0 192.168.1.0 255.255.255.0

Default rout

Ip route default 11.1.1.1

II. Configuration of FW1

Interface configuration

Make a default route

Be a peer "ppp"

Step 1 of establishing IPSec--

Click the "Import" button, then select the newly created peer "ppp", and this step is complete.

After completion, it is shown in the following picture

Step 2 of establishing IPSec--

Establish strategy

After the establishment is completed, it is shown below:

3. Ping the private network gateway in FW1 or R2 to trigger the tunnel. The status after connection is as follows:

Stage 1 Mui-Click "Monitor" on the right to view

Phase 2-the tunnel has been successfully established!

# Note, there is no other configuration!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.