Skip to content
Site Tools
Narrow screen resolution Wide screen resolution Auto adjust screen size Increase font size Decrease font size Default font size default color blue color green color
Konumun : Anasayfa arrow Makaleler arrow Makalelerin Hepsi arrow Cisco Merkez Hat FR Backup Hat ADSL VPN Otomatik Geçis
Haberler
  • Previous
  • Next
/
 
Cisco Merkez Hat FR Backup Hat ADSL VPN Otomatik Geçis Yazdır

Yazan: Site Yöneticisi, Tarih: 17-08-2007 09:53

Okunma Sayısı : 2417    

Beğenilme : Yok

ImageMerkez lokal network : 192.168.50.110

Bölge lokal network : 192.168.1.1

Merkez ADSL IP : 99.99.99.99

Sube ADSL IP : 88.88.88.88

MERKEZ ROUTER SH RUN

 

crypto isakmp policy 1

 encr 3des

 authentication pre-share

 group 2

crypto isakmp key XXXXXXX address 88.88.88.88

!

!

crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac

!

crypto map SDM_CMAP_1 1 ipsec-isakmp

 description Tunnel to88.88.88.88

 set peer 88.88.88.88

 set transform-set ESP-3DES-SHA

 match address 100

 

interface FastEthernet0/0

 description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0$

 ip address 192.168.50.110 255.255.255.0

 duplex auto

 speed auto

!

!

interface Serial0/1/0

 no ip address

 encapsulation frame-relay

 no ip mroute-cache

 load-interval 30

 no fair-queue

 frame-relay traffic-shaping

 frame-relay lmi-type ansi

!

interface Serial0/1/0.2 point-to-point

 ip address 192.168.150.1 255.255.255.0

 no ip mroute-cache

 frame-relay interface-dlci 16

frame-relay ip rtp header-compression

!

interface ATM0/2/0

 no ip address

 no atm ilmi-keepalive

 dsl operating-mode auto

!

interface ATM0/2/0.1 point-to-point

 no snmp trap link-status

 pvc 8/35

  encapsulation aal5mux ppp dialer

  dialer pool-member 1

 !

!

interface Dialer0

 ip address negotiated

 ip nat outside

 ip virtual-reassembly

 encapsulation ppp

 dialer pool 1

 dialer-group 1

 ppp authentication pap callin

 ppp pap sent-username xx@ttnet password 7 xxxxxxxxx

 crypto map SDM_CMAP_1

 

ip route 0.0.0.0 0.0.0.0 192.168.50.100

ip route 0.0.0.0 0.0.0.0 Dialer0 10

 

********* VPN i kuracagi ip ye nerden gidecegini belirtiyoruz.***********

ip route 88.88.88.88 255.255.255.255 Dialer0

 

******** Karsi networke giden iki path ide belirtmek gerekiyor.********

 

ip route 192.168.1.0 255.255.255.0 192.168.150.2

ip route 192.168.1.0 255.255.255.0 Dialer0 10

 

***** VPN i baslatan 100 nolu accesslist ********

access-list 100 remark SDM_ACL Category=4 

access-list 100 remark IPSec Rule

access-list 100 permit ip 192.168.50.0 0.0.0.255 192.168.1.0 0.0.0.255

access-list 130 permit ip host 192.168.50.221 host 192.168.1.3

!

!

 

 

SUBE ROUTER SH RUN

crypto isakmp policy 1

 encr 3des

 authentication pre-share

 group 2

crypto isakmp key XXXXXXX address 99.99.99.99

!

!

crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac

!

crypto map SDM_CMAP_1 1 ipsec-isakmp

 description Tunnel to99.99.99.99

 set peer 99.99.99.99

 set transform-set ESP-3DES-SHA

 match address 100

!

interface FastEthernet0/0

 description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0$

 ip address 192.168.1.1 255.255.255.0

 duplex auto

 speed auto

!

interface Serial0/1/0

 no ip address

 encapsulation frame-relay

 no ip mroute-cache

 load-interval 30

 no fair-queue

 frame-relay traffic-shaping

 frame-relay lmi-type ansi

!

interface Serial0/1/0.2 point-to-point

 ip address 192.168.150.2 255.255.255.0

 no ip mroute-cache

 frame-relay interface-dlci 16

frame-relay ip rtp header-compression

!

interface ATM0/2/0

 description TTNET

 no ip address

 load-interval 30

 atm ilmi-keepalive

 bundle-enable

 dsl operating-mode auto

 hold-queue 224 in

!

interface ATM0/2/0.1 point-to-point

 no snmp trap link-status

 pvc 8/35

  tx-ring-limit 3

  encapsulation aal5mux ppp dialer

  dialer pool-member 1

 !

!

interface Dialer1

 ip address negotiated

 ip nat outside

 ip virtual-reassembly

 encapsulation ppp

 load-interval 30

 dialer pool 1

 dialer idle-timeout 2147483

 no cdp enable

 ppp authentication pap callin

 ppp pap sent-username xx@ttnet password 7 xxxxxxxxxxxxxx

 crypto map SDM_CMAP_1

!

ip route 0.0.0.0 0.0.0.0 192.168.150.1

********* VPN i kuracagi ip ye nerden gidecegini belirtiyoruz.***********

ip route 99.99.99.99 255.255.255.255 Dialer1

******** Karsi networke giden iki path ide belirtmek gerekiyor.********

ip route 192.168.50.0 255.255.255.0 192.168.150.1

ip route 192.168.50.0 255.255.255.0 Dialer1 10

 

access-list 100 remark SDM_ACL Category=4

access-list 100 remark IPSec Rule

access-list 100 permit ip 192.168.1.0 0.0.0.255 192.168.50.0 0.0.0.255

access-list 130 permit ip host 192.168.1.3 host 192.168.50.221

 

    
Bu yazıyı sitenizde alıntılayın
Favori Makalelerime Ekle
Arkadaşıma Gönder

Okuyucu yorumları  RSS feed Yorum
 

Ortalama Üye Değerlendirmesi

   (0 Oylama)

  


Yorumunuzu ekleyin
[-] Yorum Formunu gizle
Sadece kayitli kullanicilar bir Makaleyi yorumlayabilir. Lütfen ücretsiz üye olun veya giriş yapın.

Gönderilen yeni yorum yok



mXcomment 1.0.5 © 2007-2012 - visualclinic.fr
License Creative Commons - Some rights reserved
Cisco Çözümleri - Cisco Genel Çözümleri
 
< Önceki
[ Geri ]