From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security
Unlock this course with a free trial
Join today to access over 22,500 courses taught by industry experts.
Site-to-site VPN
From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security
Site-to-site VPN
- [Instructor] To reinforce what we've talked about with Site-to-Site VPNs, we're now going to look at a command line configuration. In this example, we're using two Cisco routers, with that could just as easily be a couple of firewalls. If we look at the output of show IP interface brief here on router one, you'll see that our IP address is 10.10.10.1, if we jump over to router two, we are at 10.10.10.2. So first thing on router one, for global configuration mode, let's configure our ISAKMP policy. We'll do that with a command Crypto ISAKMP Policy. And if we look at contextual help, you'll see that these can be numbered one through 10,000. And this is just giving that a policy number. So I'm just going to start with policy number one here. And if we hit Enter, and then we take look at our help options, these are our policy options. These should look familiar. Remember the HAGLE mnemonic that we talked about. We see all of those values here. Hash, authentication, group, lifetime and…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
(Locked)
On-premises threats8m 42s
-
(Locked)
Cloud-based threats7m 42s
-
(Locked)
Software vulnerabilities4m 48s
-
(Locked)
SQL injection6m 47s
-
(Locked)
Buffer overflow5m 13s
-
(Locked)
Cross-site request forgery5m 7s
-
(Locked)
Hashing5m 44s
-
(Locked)
Encryption5m 19s
-
Public key infrastructure (PKI)5m 53s
-
(Locked)
IPsec9m 57s
-
(Locked)
NAT-T for IPsec4m 23s
-
(Locked)
Pre-shared key authentication7m 18s
-
(Locked)
Site-to-site VPN14m 12s
-
(Locked)
Remote access VPN10m 35s
-
(Locked)
sVTI-based VPN9m 20s
-
(Locked)
DMVPN24m 31s
-
FlexVPN5m 20s
-
(Locked)
Cisco DNA center overview7m 38s
-
(Locked)
Cisco DNA center and vManage APIs6m 21s
-
(Locked)
Python scripts8m 23s
-
(Locked)
-
-