Cisco SRP500 Configuratiehandleiding - Pagina 2
Blader online of download pdf Configuratiehandleiding voor {categorie_naam} Cisco SRP500. Cisco SRP500 9 pagina's. Small business managed router feature site to site ipsec vpns
Pagina afdrukken
Introduction
The SRP500 supports the configuration of multiple point to point IPSec VPNs. This guide illustrates how to
create VPN connections between two SRP500 devices, or between an SRP500 and an IOS device.
Guide Topology
The following network has been created to demonstrate this configuration. Note that in this case, WAN IP
addresses are statically configured and LAN IP subnets are unique between sites.
For the purposes of these configurations, the following devices and firmware versions were used:
Site 1: SRP541W running v1.1.19(004)
Site 2: SRP521W running v1.2.0(023)
Site 3: SR520 running IOS 15.1(1)T
Configuring the SRP500 for IPSec
The following screenshots illustrate how to configure the SRP500 IKE and IPSec policies for connecting to a
remote IOS device. Connecting to a remote SRP500 can follow exactly the same approach, allowing of
course the appropriate address and subnet in that case.
IKE Policy configuration
In this example, the IKE policy is defined to require 3DES encryption with SHA-1 authentication. The
connection is secured with a pre-shared key "SECRET-KEY". These details will also be used for the IOS
configuration.
A single IKE policy may be used for all IPSec tunnels, or a separate one created for each, depending on your
security requirements. Access the VPN > IKE Policy SRP500 page and click Add Entry to define a new
policy.
All contents are Copyright © 1992-2011 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 2 of 9