IPSecVTI例 のバックアップ(No.1)

• バックアップ一覧
• 差分 を表示
• 現在との差分 を表示
• ソース を表示
• IPSecVTI例 へ行く。
  • 1 (2013-07-17 (水) 10:44:51)
  • 2 (2013-07-17 (水) 11:13:54)

CISCO入門

   *IPSEC VTI設定例

   **Rotuer1
   R1#show running-config
   Building configuration...

   Current configuration : 1333 bytes
   !
   version 12.4
   service timestamps debug datetime msec
   service timestamps log datetime msec
   no service password-encryption
   !
   hostname R1
   !
   boot-start-marker
   boot-end-marker
   !
   !
   no aaa new-model
   ip cef
   !
   !
   ip auth-proxy max-nodata-conns 3
   ip admission max-nodata-conns 3
   !
   !
   !
   !
   !
   !
   !
   !
   !
   !
   crypto isakmp policy 10
    encr 3des
    hash md5
    authentication pre-share
    group 2
   crypto isakmp key cisco address 10.1.1.0 255.255.255.0
   !
   !
   crypto ipsec transform-set VTI-IPSEC esp-3des esp-md5-hmac
   !
   crypto ipsec profile MYPROFILE
    set transform-set VTI-IPSEC
   !
   !
   !
   !
   interface Loopback0
    ip address 172.16.16.1 255.255.255.0
   !
   interface Loopback1
    ip address 192.168.200.1 255.255.255.0
   !
   interface Tunnel0
    ip address 192.168.111.1 255.255.255.0
    tunnel source FastEthernet0
    tunnel destination 10.1.1.2
    tunnel mode ipsec ipv4
    tunnel protection ipsec profile MYPROFILE
   !
   interface Ethernet0
    no ip address
    shutdown
    half-duplex
   !
   interface FastEthernet0
    ip address 10.1.1.1 255.255.255.0
    speed auto
   !
   interface Serial0
    no ip address
    shutdown
   !
   router eigrp 20
    network 172.16.16.0 0.0.0.255
    network 192.168.111.0
    network 192.168.200.0
    no auto-summary
   !
   ip forward-protocol nd
   !
   no ip http server
   no ip http secure-server
   !
   !
   control-plane
   !
   !
   line con 0
    password cisco
    logging synchronous
    login
   line aux 0
   line vty 0 4
   !
   end

   R1#

   **Rotuer2

   2#show running-config
   Building configuration...

   Current configuration : 1304 bytes
   !
   version 12.4
   service timestamps debug datetime msec
   service timestamps log datetime msec
   no service password-encryption
   !
   hostname R2
   !
   boot-start-marker
   boot-end-marker
   !
   !
   no aaa new-model
   ip cef
   !
   !
   ip auth-proxy max-nodata-conns 3
   ip admission max-nodata-conns 3
   !
   !
   !
   !
   !
   !
   !
   !
   !
   !
   crypto isakmp policy 10
    encr 3des
    hash md5
    authentication pre-share
    group 2
   crypto isakmp key cisco address 10.1.1.0 255.255.255.0
   !
   !
   crypto ipsec transform-set VTI-IPSEC esp-3des esp-md5-hmac
   !
   crypto ipsec profile MYPROFILE
    set transform-set VTI-IPSEC
   !
   !
   !
   !
   interface Loopback0
    ip address 172.16.16.2 255.255.255.0
   !
   interface Loopback1
    ip address 192.168.201.1 255.255.255.0
   !
   interface Tunnel0
    ip address 192.168.111.2 255.255.255.0
    tunnel source FastEthernet0
    tunnel destination 10.1.1.1
    tunnel mode ipsec ipv4
    tunnel protection ipsec profile MYPROFILE
   !
   interface Ethernet0
    no ip address
    shutdown
    half-duplex
   !
   interface FastEthernet0
    ip address 10.1.1.2 255.255.255.0
    speed auto
   !
   interface Serial0
    no ip address
    shutdown
    no fair-queue
   !
   router eigrp 20
    network 172.16.16.0 0.0.0.255
    network 192.168.111.0
    network 192.168.201.0
    no auto-summary
   !
   ip forward-protocol nd
   !
   no ip http server
   no ip http secure-server
   !
   !
   control-plane
   !
   !
   line con 0
   line aux 0
   line vty 0 4
   !
   end