Example for the VPN Configuration of Cisco

Here is an example for the VPN configuration of Cisco router to green hand.

r1(config)#int f0/0 r1(config if)#ip add !0.!0.!0.!0 "!!."!!."!!.0 r1(config if)#no shu r1(config if)#int f1/0 r1(config if)#ip add "0."0."0."0 "!!."!!."!!.0 r1(config if)#no shu r1(config)#ip route 0.0.0.0 0.0.0.0 "0."0."0."1 //#o a default route to ma$e the interopera%ilit& o'er (hole net(or$ r1(config)#cr&pto isa$mp polic& 1 r1(config isa$mp)#authentication pre share //)na%le the definition of shared $e& r1(config isa$mp)#encr&ption *des //+se *#), encr&ption algorithm r1(config isa$mp)#hash md! //+se -#! hash algorithm to .uthenticate the $e& r1(config)#cr&pto isa$mp $e& 0 1"* address "0."0."0."1 //,et the shared $e& to %e 1"* and the peer address r1(config)#cr&pto isa$mp transform set /hao ah md! h esp *des //0ransmission mode is /hao1 'erification is md! and encr&ption is *des r1(config)#accress list 101 permit ip !0.!0.!0.0 0.0.0."!! 20.20.20.0 0.0.0."!! //Configure .C3 r1(config)#cr&pto map 4in 1 ipsec isa$mp //Create cr&pto map name to %e 4in r1(config cr&pto map)#set peer "0."0."0."1 //,et the lin$ to the peer 5P address r1(config cr&pto map)#set transfrom set /hao //,et the transmission mode /hao r1(config cr&pto map)#match address 101 //,et application control list
1

r1(config)#int f0/0 r1(config)#cr&pto map 4in //.ppl& to the interface r"(config)#int f0/0r"(config if)#ip add 20.20.20.20 "!!."!!."!!.0 r"(config if)#no shu r"(config if)#int f1/0 r"(config if)#ip add "0."0."0."1 "!!."!!."!!.0 r"(config if)#no shu r"(config)#ip route 0.0.0.0 0.0.0.0 "0."0."0."0 //#o a default route to ma$e the interopera%ilit& o'er (hole net(or$ r"(config)#cr&pto isa$mp polic& 1 r"(config isa$mp)#authentication pre share //)na%le the definition of shared $e& r"(config isa$mp)#encr&ption *des //+se *#), encr&ption algorithm r"(config isa$mp)#hash md! //+se -#! hash algorithm to .uthenticate the $e& r"(config)#cr&pto isa$mp $e& 0 1"* address "0."0."0."0 //,et the shared $e& to %e 1"* and the peer address r"(config)#cr&pto isa$mp transform set /hao ah md! h esp *des //0ransmission mode is /hao1 'erification is md! and encr&ption is *des r"(config)#accress list 101 permit ip 20.20.20.0 0.0.0."!! !0.!0.!0.0 0.0.0."!! //Configure .C3 r"(config)#cr&pto map 4in 1 ipsec isa$mp //Create cr&pto map name to %e 4in r"(config cr&pto map)#set peer "0."0."0."1 //,et the lin$ to the peer 5P address r"(config cr&pto map)#set transfrom set /hao //,et the transmission mode /hao r"(config cr&pto map)#match address 101 //,et application control list r"(config)#int f0/0 r"(config)#cr&pto map 4in 'pcs16ip !0.!0.!0.78 !0.!0.!0.!0 "7 'pcs"6ip !0.!0.!0.79 !0.!0.!0.!0 "7 'pcs*6ip 20.20.20.78 20.20.20.20 "7 'pcs76ip 20.20.20.79 20.20.20.20 "7

0hen for the ping test. :,ho(; is used to see results and the sho( command (ill %e used as %elo(6
Vie( port applications r1# sho( cr&pto map Vie( 5<) negotiation r1# sho( cr&pto isa$mp polic& Vie( 0ransmission -ode r1# sho( cr&pto ipsec transform set -ore related6 Cisco Switch 3550 Speed Limits to Interface Enterprise Networ !anager" the #outer$on$a$Stic Cisco Catal%st 3&50$' Series Configurations -ore Cisco products and =e'ie(s &ou can 'isit6 http"((www)3anetwor )com(*log

3+networ )com is a world leading Cisco networ ing products wholesaler, we wholesale original new Cisco networ ing e-uipments, including Cisco Catal%st switches, Cisco routers, Cisco firewalls, Cisco wireless products, Cisco modules and interface cards products at competiti.e price and ship to worldwide) /ur we*site" http"((www)3anetwor )com 0elephone" 1253$3045$&&33 Email" info63+networ )com +ddress" 33(7 Luc % Pla8a, 395$339 Loc hart #oad, :anchai, ;ong ong