© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Lesson 15 Configure the Cisco Virtual Private Network 3000 Series Concentrator for LAN-to-LAN with Pre-Shared Keys
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Objectives Upon the completion of this lesson, you will be able to perform the following tasks: Configure the Concentrator via Quick Configuration. Configure LAN-to-LAN tunnels. Monitor LAN-to-LAN tunnels. Configure network lists. Configure Network Autodiscovery.
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Cisco VPN 3000 Series Concentrator IPSec LAN-to-LAN
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN LAN-to-LAN Internet Server Remote site Remote site Remote site
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN IPSec LAN-to-LAN Concentrator Application server Public IP address Public IP address PC IP address Tunnel Session Corporate Remote office ESP Data Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN ConcentratorPhysical Connections Console port Private IP address Public IP address Power Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Configuration Options Welcome to Cisco Systems VPN 3000 Concentrator Series Command Line Interface 1) Configuration 2) Administration 3) Monitoring 4) Save changes to Config file 5) Help Information
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN GUI Table of contents Toolbar Manager screen
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Quick Configuration
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Configuring the Cisco VPN 3000 Series Concentrator via the Quick Configuration Wizard
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN IP Interfaces Ethernet 1 (Private IP) 10.0.P.5 Ethernet 2 (Public IP) P.5
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Public IP Interface Ethernet 1 (Private IP address) 10.0.P.5 Ethernet 2 (Public IP address)
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN System Information
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Protocols IPSec Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Admin Password
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN LAN-to-LAN Configuration
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Add IPSec LAN-to-LAN IPSec Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Boston IPSec LAN-to-LAN Boston Houston
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN IPSec LAN-to-LAN Is Finished Boston Houston IPSec Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN IPSec LAN-to-LAN Connection Boston Houston IPSec Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Houston IPSec LAN-to-LAN Boston Houston
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN IPSec LAN-to-LAN Is Finished Boston Houston IPSec Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Administration Sessions
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Multiple Subnets Boston Houston Router Seattle San Francisco Router Internet
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Network Lists
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN LAN-to-LAN Network Lists
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN LAN-to-LAN Network Autodiscovery Boston 10.0.P Houston 10.0.Q LAN-to-LAN tunnel Internet NAD RIP inbound RIP inbound NAD
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Summary
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Summary Interface and system information is configured via Quick Configuration. LAN-to-LAN is configured via a second wizard. Network lists enable ease of configuration when dealing with multiple subnets. Network autodiscovery learns the local subnets by listening to RIP updates.
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Lab Exercise
© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Q P.0 Lab Visual Objective Student PC.5 Student PC P Q P Q.0 RTS.100 RTS.100 Pods 1–5 Pods 6–10.10 Web FTP Web FTP RBB Concentrator