收藏 分享(赏)
下载资源 加入VIP,免费下载

VPN综合实验_动态IPsec.pdf

上传人:HR专家 文档编号:6037666 上传时间:2019-03-25 格式:PDF 页数:34 大小:61.09KB
下载 相关 举报
VPN综合实验_动态IPsec.pdf_第1页
第1页 / 共34页
VPN综合实验_动态IPsec.pdf_第2页
第2页 / 共34页
VPN综合实验_动态IPsec.pdf_第3页
第3页 / 共34页
VPN综合实验_动态IPsec.pdf_第4页
第4页 / 共34页
VPN综合实验_动态IPsec.pdf_第5页
第5页 / 共34页
点击查看更多>>
资源描述

1、r1-center#sh run Building configuration. Current configuration : 1852 bytes ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname r1-center ! boot-start-marker boot-end-marker ! ! aaa new-model ! ! ! aaa session-id common

2、 ! resource policy ! memory-size iomem 5 ip cef ! ! ! ! no ip domain lookup ip domain name ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! username dongzhi password 0 cisco ! ! ! crypto isakmp policy 10 hash md5 authentication pre-share group 2 lifetime 3600 crypto isakmp key cisco address 172.16.10.0 255.

3、255.255.0 crypto isakmp key cisco hostname r2-part1 crypto isakmp key cisco hostname r3-part2 ! ! crypto ipsec transform-set cisco ah-md5-hmac esp-des ! crypto dynamic-map cisco 10 set transform-set cisco match address cisco ! ! crypto map r1 10 ipsec-isakmp dynamic cisco ! ! ! ! ! interface Loopbac

4、k0 ip address 1.1.1.1 255.255.255.0 ! interface FastEthernet0/0 no ip address shutdown duplex auto speed auto ! interface FastEthernet0/1 no ip address shutdown duplex auto speed auto ! interface Serial1/0 ip address 172.16.10.1 255.255.255.0 encapsulation frame-relay serial restart-delay 0 crypto m

5、ap r1 ! interface Serial1/1 no ip address shutdown serial restart-delay 0 ! interface Serial1/2 no ip address shutdown serial restart-delay 0 ! interface Serial1/3 no ip address shutdown serial restart-delay 0 ! router eigrp 100 passive-interface Loopback0 network 1.1.1.1 0.0.0.0 network 172.16.10.1

6、 0.0.0.0 no auto-summary ! ! ! ip http server no ip http secure-server ! ip access-list extended cisco permit tcp host 1.1.1.1 host 2.2.2.2 permit tcp host 1.1.1.1 host 3.3.3.3 ! ! ! ! ! ! ! control-plane ! ! ! ! ! ! ! ! ! ! ! line con 0 exec-timeout 0 0 logging synchronous line aux 0 line vty 0 4 t

7、ransport input telnet ssh line vty 5 903 transport input telnet ssh ! ! End FR-SW1#sh run Building configuration. Current configuration : 1509 bytes ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname FR-SW1 ! boot-star

8、t-marker boot-end-marker ! ! no aaa new-model ! resource policy ! memory-size iomem 5 no ip routing no ip cef ! ! ! ! no ip domain lookup ! ! frame-relay switching ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Tunnel0 no ip address tunnel source FastEthernet0/0 tunnel destination 100.1

9、.1.2 ! interface FastEthernet0/0 ip address 100.1.1.1 255.255.255.0 no ip route-cache duplex auto speed auto no cdp enable ! interface FastEthernet0/1 no ip address no ip route-cache shutdown duplex auto speed auto ! interface Serial1/0 no ip address encapsulation frame-relay no ip route-cache seria

10、l restart-delay 0 clock rate 64000 frame-relay intf-type dce frame-relay route 102 interface Serial1/1 201 frame-relay route 103 interface Tunnel0 130 ! interface Serial1/1 no ip address encapsulation frame-relay no ip route-cache serial restart-delay 0 clock rate 64000 frame-relay lmi-type ansi fra

11、me-relay intf-type dce frame-relay route 201 interface Serial1/0 102 ! interface Serial1/2 no ip address no ip route-cache shutdown serial restart-delay 0 ! interface Serial1/3 no ip address no ip route-cache shutdown serial restart-delay 0 ! ! ! ip http server no ip http secure-server ! ! ! ! ! ! !

12、 control-plane ! ! ! ! ! ! ! ! ! ! ! line con 0 exec-timeout 0 0 logging synchronous line aux 0 line vty 0 4 ! ! End FR-SW2#sh run Building configuration. Current configuration : 1353 bytes ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password

13、-encryption ! hostname FR-SW2 ! boot-start-marker boot-end-marker ! ! no aaa new-model ! resource policy ! memory-size iomem 5 no ip routing no ip cef ! ! ! ! no ip domain lookup ! ! frame-relay switching ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Tunnel0 no ip address tunnel source

14、 FastEthernet0/0 tunnel destination 100.1.1.1 ! interface FastEthernet0/0 ip address 100.1.1.2 255.255.255.0 no ip route-cache duplex auto speed auto no cdp enable ! interface FastEthernet0/1 no ip address no ip route-cache shutdown duplex auto speed auto ! interface Serial1/0 no ip address encapsul

15、ation frame-relay no ip route-cache serial restart-delay 0 clock rate 64000 frame-relay lmi-type ansi frame-relay intf-type dce frame-relay route 301 interface Tunnel0 130 ! interface Serial1/1 no ip address no ip route-cache shutdown serial restart-delay 0 ! interface Serial1/2 no ip address no ip

16、route-cache shutdown serial restart-delay 0 ! interface Serial1/3 no ip address no ip route-cache shutdown serial restart-delay 0 ! ! ! ip http server no ip http secure-server ! ! ! ! ! ! ! control-plane ! ! ! ! ! ! ! ! ! ! ! line con 0 exec-timeout 0 0 logging synchronous line aux 0 line vty 0 4 !

17、! End r2-part1#sh run Building configuration. Current configuration : 1595 bytes ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname r2-part1 ! boot-start-marker boot-end-marker ! ! no aaa new-model ! resource policy !

18、memory-size iomem 5 ip cef ! ! ! ! no ip domain lookup ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! crypto isakmp policy 10 hash md5 authentication pre-share group 2 lifetime 3600 crypto isakmp key cisco address 172.16.10.1 crypto isakmp key cisco hostname r1-center ! ! crypto ipsec transform-set c

19、isco ah-md5-hmac esp-des ! crypto map r2 10 ipsec-isakmp set peer 172.16.10.1 set transform-set cisco set pfs group2 match address cisco ! ! ! ! ! interface Loopback0 ip address 2.2.2.2 255.255.255.0 ! interface FastEthernet0/0 no ip address shutdown duplex auto speed auto ! interface FastEthernet0/

20、1 no ip address shutdown duplex auto speed auto ! interface Serial1/0 ip address 172.16.10.4 255.255.255.0 encapsulation frame-relay serial restart-delay 0 crypto map r2 ! interface Serial1/1 no ip address shutdown serial restart-delay 0 ! interface Serial1/2 no ip address shutdown serial restart-de

21、lay 0 ! interface Serial1/3 no ip address shutdown serial restart-delay 0 ! router eigrp 100 passive-interface Loopback0 network 2.2.2.2 0.0.0.0 network 172.16.10.4 0.0.0.0 no auto-summary ! ! ! ip http server no ip http secure-server ! ip access-list extended cisco permit tcp host 2.2.2.2 host 1.1.

22、1.1 ! ! ! ! ! ! ! control-plane ! ! ! ! ! ! ! ! ! ! ! line con 0 exec-timeout 0 0 logging synchronous line aux 0 line vty 0 4 ! ! End r3-part2#sh run Building configuration. Current configuration : 1629 bytes ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec

23、no service password-encryption ! hostname r3-part2 ! boot-start-marker boot-end-marker ! ! no aaa new-model ! resource policy ! memory-size iomem 5 ip cef ! ! ! ! no ip domain lookup ip ssh source-interface Loopback0 ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! crypto isakmp policy 10 hash md5 auth

24、entication pre-share group 2 lifetime 3600 crypto isakmp key cisco address 172.16.10.1 crypto isakmp key cisco hostname r1-center ! ! crypto ipsec transform-set cisco ah-md5-hmac esp-des ! crypto map r3 10 ipsec-isakmp set peer 172.16.10.1 set transform-set cisco set pfs group2 match address cisco ! ! !

展开阅读全文
相关资源
猜你喜欢
相关搜索

当前位置:首页 > 企业管理 > 经营企划

本站链接:文库   一言   我酷   合作

客服QQ:2549714901微博号:道客多多官方知乎号:道客多多

经营许可证编号: 粤ICP备2021046453号世界地图

道客多多©版权所有2020-2025营业执照举报