Category: VPN
IPSec over GRE Tunnel in CISCO Routers
March 3rd, 2010, Comments Off
One of the typical tasks it transforming routers table between two routers through public routers (for example via internet). So all data moving through public space has to be encrypted. And one of the best solution it use IPSec for encryption. However one of the disadvantage of IPSec it is working only with unicast traffic. [...]
Some commands for checking IPSec tunnels
December 15th, 2009, Comments Off
After establishing an IPSec tunnel, you can verify and view the tunnel’s parameters by issuing the show crypto engine connections active which shows a summary crypto engine connections and show crypto session which shows the status for each active crypto session.
Also we can use show crypto isakmp sa, which shows all existing IKE Phase 1 [...]
Configuring Site-to-Site VPN
December 14th, 2009, Comments Off
The CLI configuring involves five primary steps:
Step 1 – Define what parameters will be used for the IKE Phase 1 tunnel (that is, the ISAKMP tunnel). This set of parameters is called an ISAKMP policy. These parameters concern authentication (pre-share or using certification), protocol of hashing, protocol encryption, DH group and lifetime.
Step 2 – Define [...]
