服务器 Gind.cn
  1. 服务器 Gind.cn
  3. Cisco VPN Packet Tracer
Intereting Posts
在DNS中,IN NS指向一个CNAME? OpenVPNconfiguration文件 如何在Windows中自动化Websphere MQ安装? devise> 100台设备的计算机networking,划分服务器职责 脚本帮助 – parsing/ var / spool / mail / user ESXi免费,2个虚拟机专用于硬件RAID1 2x SATA 7.2k ML150 Gen9上的FEM分析 Azure VM无法通过SSH连接到我的虚拟机 如何从头创build基于EBS的EC2 AMI? systemd中的软依赖 从Exchange 2003转储符合特定标准的电子邮件 FTP使用rsync 通过bashpipe道处理大文件,它缓冲吗? 今天有没有理由在一个森林中有多个域名? Solaris pam_ldap身份validation使用sshd-kbdint和失败 设置posfix邮件服务器 – 允许本地电子邮件(错误550 5.7.1)

Cisco VPN Packet Tracer

我不太擅长VPN和cisco,我想在Packet Tracert 5.3上创build一些VPN,所以我做了一些基本的架构

Computer1(IP:192.168.0.11)

ROUTER1(IP:192.168.0.1)(IP:10.0.0.1)

Router2(IP:10.0.0.2)(IP:192.168.2.1)

Computer2(IP:192.168.2.12)

连接如下

计算机1 ——– ——–路由器Router1 Router2的计算机2 ——–

以下是router1的configuration: 

Building configuration... Current configuration : 855 bytes ! version 12.4 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname Gauche ! ! ! ! ! ! ! ! crypto isakmp policy 1 encr aes 256 hash md5 authentication pre-share lifetime 7200 ! crypto isakmp key cisco address 10.0.0.2 ! ! crypto ipsec transform-set Router1 esp-des esp-sha-hmac ! crypto map Router1 1 ipsec-isakmp set peer 10.0.0.2 set transform-set Router1 match address 101 ! ! ! ! ! ! ! ! ! interface FastEthernet0/0 ip address 192.168.0.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 ip address 10.0.0.1 255.255.255.0 duplex auto speed auto crypto map Router1 ! interface Vlan1 no ip address shutdown ! ip classless ! ! access-list 101 permit ip 192.168.2.0 0.0.0.255 192.168.0.0 0.0.0.255 ! ! ! ! ! line con 0 line vty 0 4 login ! ! ! end

这是router2的configuration: 

 Building configuration... Current configuration : 890 bytes ! version 12.4 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname Droite ! ! ! ! ! ! ! ! crypto isakmp policy 1 encr aes 256 hash md5 authentication pre-share lifetime 7200 ! crypto isakmp key cisco address 10.0.0.1 ! ! crypto ipsec transform-set Router1 esp-des esp-sha-hmac ! crypto map Router1 1 ipsec-isakmp set peer 10.0.0.1 set transform-set Router1 match address 101 ! ! ! ! ! ! ! ! ! interface FastEthernet0/0 ip address 10.0.0.2 255.255.255.0 duplex auto speed auto crypto map Router1 ! interface FastEthernet0/1 ip address 192.168.2.1 255.255.255.0 duplex auto speed auto ! interface Vlan1 no ip address shutdown ! ip classless ip route 0.0.0.0 0.0.0.0 10.0.0.1 ! ! access-list 101 permit ip 192.168.0.0 0.0.0.255 192.168.2.0 0.0.0.255 ! ! ! ! ! line con 0 line vty 0 4 login ! ! ! end

但是我真的不知道为什么VPN没有build立起来,有人能帮助我,谢谢。

我检查了你的configuration,但没有看到你的ACLconfiguration。你需要允许有趣的stream量,然后将encryption映射关联到访问列表101.希望这有助于。