Mar 30

Would you take lollies from this man?

By Slappa
No Comments
Funny

Found this in my email this morning and had to share it. Lollies

your ads here (468x60) - after 1st post.

Mar 21

837 ipsec vpn example

By Slappa
No Comments
General

83x Example
(In this example 10.0.1.0/24 is the local network. And 10.0.0.0/24 is the remote network.)

crypto isakmp policy 10
encr 3des
hash md5
authen pre-share

crypto isakmp key MyCrypt0k3y address x.x.x.x (Address of remote site)

crypto ipsec transform-set MD5DES ah-md5-hmac esp-des

crypto map VPN 10 ipsec-isakmp
description Link to Head Office
set peer x.x.x.x (Address of remote site)
set transform-set MD5DES
match address IPSEC-HO

interface Dialer1 (Internet Interface)
crypto map VPN

ip nat inside source list LocalNATNetworks interface Dialer1 overload

ip access-list extended IPSEC-HO
remark IPESEC Match List- Site to Head Office
permit ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255

ip access-list extended LocalNATNetworks
remark Don’t Nat VPN Traffic
deny ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255
remark NAT local Network
permit ip 10.0.1.0 0.0.0.255 any

Mar 21

877 ipsec vpn example

By Slappa
No Comments
General

87x Example.
(In this example 10.0.1.0/24 is the local network. And 10.0.0.0/24 is the remote network.)

crypto isakmp policy 10
encr 3des
hash md5
authen pre-share

crypto isakmp key MYcrypt0k3y address x.x.x.x (address of remote site)

crypto ipsec transform-set AES256 esp-aes 256 esp-md5-hmac

crypto map VPN 10 ipsec-isakmp
description Link to Head Office
set peer x.x.x.x (address of remote site)
set transform-set AES256
match address IPSEC-HO

interface Dialer1 (Internet Interface)
crypto map VPN

ip nat inside source list LocalNATNetworks interface Dialer1 overload

ip access-list extended IPSEC-HO
remark IPESEC Match List- Site to Head Office
permit ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255

ip access-list extended LocalNATNetworks
remark Don’t Nat VPN Traffic
deny ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255
remark NAT local Network
permit ip 10.0.1.0 0.0.0.255 any

Mar 20

Cisco 877 Multiple VLANs

By Slappa
No Comments
Cisco, Tech Tips

The below commands, creates a second vlan and assisgns fastethernet3 to it.

Login to the router.

Enable
Vlan database
Vlan 2 name DMZ
Exit

Conf t
Interface vlan2
description DMZ
ip address x.x.x.x 255.255.255.0

interface FastEthernet3
switchport access vlan 2
no shutdown

Previous Entries