还剩1页未读,继续阅读
文本内容:
实验十六实验Easy VPN
一、实验目的掌握配置方法Easy VPN
二、简介EasyVPN远程接入技术,常见的有以及现在很火的VPN PPTP,L2TP,Easy VPNSSL VPN等现在以这个模拟器为基础,做的实验Cisco PacketTracer
5.2Easy VPN Easy是独有的远程接入技术是在建立的两个VPN CiscoVPNEasy VPN IpsecVPN阶段(阶段和阶段)之间多了一个阶段(用户认证阶段等)IKE IPSEC
2.5
三、实验内容、实验拓扑1Server-PT ServerO、地址规划如下:2IP总部服务器、24总部路由器fa0/0fa0/1网路由器:Internet fa0/1fa0/0远端路由器:fa0/0fa0/1办公笔记本
172.
16.
1.k
24、)配置如下:3RoutedIOS CommandLine Interfaceinterface FastEthernetO/O ip address
200.
1.
1.
1255.25S.2SS.0duplex autospeed auto i interface FaatEthernetO/l ipaddress
100.
1.
1.125S.2S
5.
255.0duplex auto speedauto i■interface Vlanlno ipaddress shutdowni■routerripip cla331e33ip route
0.
0.
0.
00.
0.
0.
0100.
1.
1.2ip route
0.
0.
0.
00.
0.
0.
0200.
1.
1.2I、的配置4RouteriIOS CommandLine Interfaceusername七ang password0123i crypto isakz^policy10hash md5authentication pre-share group2i icryptoisakrp clientconfiguration groupmyez key123pool ezi icryptoipsec transform-set timesp-Sdes esp-mdS-hmac icryptodynamic-map ezmap10sz transform-set timreverse-route icrypto map tom client authenticationlist;eza crypto map tomisaksp authorizationlist ezocryptomaptomclientconfigurationaddress respondcryptomaptom10ipsec-isakznp dynamicezmap、的配置5Router2ikjo k.uiiiiiiciiiu LineiiiLei iaceinterfaceFaatEthernetO/0ipaddress
200.
1.
1.22S
5.
255.2SS.0ip natoutside duplexaut;o speedaut;oiinterfaceFa3tStheme10/1ipaddress
172.
16.
1.2S
4255.25S.
255.0ip nazinside duplexau€ospeedaut;oiinterface VTanlno ipaddress shutdowni routerripi ipnat insidesource list1interface FastEthernetO/O overloadip classlessip route
0.
0.
0.
00.
0.
0.
0200.
1.
1.1iiaccess-list1permit
172.
16.
1.
00.
0.
0.2SS、的测试:6Easy VPNVPNConfigurationGroupNamemyezPhysical ConfigDesktopVPN ConfigurationClientIP VPN
四、实验中遇到的问题及解决方案Group Key123在本实验中,连接网络拓扑倒是比较简单的,但是当做到路由器的配置的时候,Host IPServer IP
100.
1.
1.2由于不是很了解在总部的配置时候不熟悉各个配置模式及命令,VPN,Easy VPN在配置过程中操作各个步骤显得有点笨拙,但是通过仔细遇到老师所给的其他相关资料后,对的配置各种命令有了更深的了解,于是很快就完成了相关EasyVPN的配置。
个人认证
优秀文档
获得点赞 0
