Headquarters Router
En
Conf t
Ip router 0.0.0.0 0.0.0.0 200.0.0.2
Crypto isakmp policy 1
Encryption 3des
Hash sha
Authentication pre-share
Group 2
Lifectime 10000
Exit
Crypto isakmp key benet address 201.0.0.2
Access-list 100 permit ip 192.168.1.0 0.0.255 192.168.2.0 0.0.255
Crypto ipsec transform-set benet-set esp-des esp-sha-hmac
Crypto ipsec security-association lifetime seconds 1800
Crypto map benet-set 1 ipsec-isakmp
Set peer 201.0.0.2
Set transform-set benet-set
Match address 100
Exit
Int f0/1
Crypto map benet-set
End
Wr
Bytes ----------------------------------------------------------------------------------------------------------------------------
Branch Router
En
Conf t
Ip roouter 0.0.0.0 0.0.0.0 201.0.0.1
Crypto isakmp policy 1
Encryption 3des
Hash sha
Authentication pre-share
Group 2
Lifectime 10000
Exit
Crypto isakmp key benet address 200.0.0.1
Access-list 100 permit ip 192.168.2.0 0.0.255 192.168.1.0 0.0.255
Crypto ipsec transform-set benet-set esp-des esp-sha-hmac
Crypto ipsec security-association lifetime seconds 1800
Crypto map benet-set 1 ipsec-isakmp
Set peer 200.0.0.1
Set transform-set benet-set
Match address 100
Exit
Int f0/0
Crypto map benet-set
End
Wr
This experiment was conducted using a Cisco simulator. ping the experiment several times during the test (PT has a bug)
Author: Dong 2"