Mar 21

877 ipsec vpn example

By Slappa
Add comments
General

87x Example.
(In this example 10.0.1.0/24 is the local network. And 10.0.0.0/24 is the remote network.)

crypto isakmp policy 10
encr 3des
hash md5
authen pre-share

crypto isakmp key MYcrypt0k3y address x.x.x.x (address of remote site)

crypto ipsec transform-set AES256 esp-aes 256 esp-md5-hmac

crypto map VPN 10 ipsec-isakmp
description Link to Head Office
set peer x.x.x.x (address of remote site)
set transform-set AES256
match address IPSEC-HO

interface Dialer1 (Internet Interface)
crypto map VPN

ip nat inside source list LocalNATNetworks interface Dialer1 overload

ip access-list extended IPSEC-HO
remark IPESEC Match List- Site to Head Office
permit ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255

ip access-list extended LocalNATNetworks
remark Don’t Nat VPN Traffic
deny ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255
remark NAT local Network
permit ip 10.0.1.0 0.0.0.255 any

This entry was posted on Wednesday, March 21st, 2007 at 2:40 pm and is filed under General. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

You must be logged in to post a comment.