need help solution for VPN

zeangkor

Beta member
Messages
1
Location
georgia, tbilisi
hello everybody i need solution if u done it before i have setup of site-to-site IPsec VPN in head office from where i can see a branch's also i have L2TP server in my router so users get IP's from same network now there will be new office from where i want to see all the branch's so i need to find a way from new office to connect Through head office to see all do you know any solutions to do this?
 

AMYT768908

Baseband Member
Messages
37
Location
australia
I can understand why you need site to site VPN now what you can for an IPSec connection is to first configure ISAKMP and second configure IPSec .

Here how to configure ISAKMP
  • R1(config)# crypto isakmp policy 1
    R1(config-isakmp)# encr 3des
    R1(config-isakmp)# hash md5
    R1(config-isakmp)# authentication pre-share
    R1(config-isakmp)# group 2
    R1(config-isakmp)# lifetime 86400
3DES - The encryption method to be used for Phase 1.
MD5 - The hashing algorithm
Pre-share - Use the Pre-shared key as the authentication method
Group 2 - Diffie-Hellman group to be used
86400 – Session key lifetime. Expressed in either kilobyte (after x-amount of traffic, change the key) or seconds. The value set is the default value

NOW CONFIGURE IPSEC IN 4 EASY STEPS

  • Create extended ACL
  • Create IPSec Transform
  • Create Crypto Map
  • Apply crypto map to the public interface

 
Top Bottom