OpenForum RSS: IPSec Cisco871 <-> Cisco871 - ��

IPSec Cisco871 <-> Cisco871 - �� (ViKu)

Wed, 13 Aug 2008 10:25:30 GMT

>access-list 100 deny ip 192.xxx.xxx.0 0.0.0.15 192.xxx.xxx.16 0.0.0.15
>access-list 100 permit ip 192.xxx.xxx.0 0.0.0.15 any
>access-list 103 permit ip 192.xxx.xxx.0 0.0.0.15 192.xxx.xxx.16 0.0.0.15

�� ACL
access-list 100 deny icmp 192.xxx.xxx.0 0.0.0.15 192.xxx.xxx.16 0.0.0.15
access-list 103 permit icmp 192.xxx.xxx.0 0.0.0.15 192.xxx.xxx.16 0.0.0.15

�� . �� echo � echo-reply.
�� -�� IOS 12.3 �� ACL ip - �� icmp - �� :-)

IPSec Cisco871 <-> Cisco871 - �� (Ash)

Mon, 11 Aug 2008 12:38:49 GMT

>[�� ]
> Crypto map tag: rtp, local addr 10.0.100.10
>
> protected vrf: (none)
> local ident (addr/mask/prot/port): (192.168.64.16/255.255.255.240/0/0)
> remote ident (addr/mask/prot/port): (192.168.64.0/255.255.255.240/0/0)
> current_peer 10.0.100.2 port 500
> PERMIT, flags={origin_is_acl,}
> #pkts encaps: 14, #pkts encrypt: 14, #pkts digest:
>14
> #pkts decaps: 14, #pkts decrypt: 14, #pkts verify:

�� .

>�� ӣ �� ... :(
>

��
�� (�� cisco � ��)

IPSec Cisco871 <-> Cisco871 - �� (sh_)

Fri, 08 Aug 2008 12:23:23 GMT

>�� ӣ �� ... :(
>

�� -�� access-list 103

IPSec Cisco871 <-> Cisco871 - �� (papashko)

Fri, 08 Aug 2008 12:00:43 GMT

>>��
>>sh crypto ipsec sa
>>� �� ??
>

�� pre-shared key

�� :

ROUTER 2

interface: FastEthernet4
Crypto map tag: rtp, local addr 10.0.100.10

protected vrf: (none)
local ident (addr/mask/prot/port): (192.168.64.16/255.255.255.240/0/0)
remote ident (addr/mask/prot/port): (192.168.64.0/255.255.255.240/0/0)
current_peer 10.0.100.2 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 14, #pkts encrypt: 14, #pkts digest: 14
#pkts decaps: 14, #pkts decrypt: 14, #pkts verify: 14
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 35, #recv errors 0

local crypto endpt.: 10.0.100.10, remote crypto endpt.: 10.0.100.2
path mtu 1500, ip mtu 1500
current outbound spi: 0xB20509D3(2986674643)

inbound esp sas:
spi: 0x67087057(1728606295)
transform: es

IPSec Cisco871 <-> Cisco871 - �� (papashko)

Fri, 08 Aug 2008 11:48:11 GMT

>��
>sh crypto ipsec sa
>� �� ??

ROUTER 1

interface: FastEthernet4
Crypto map tag: rtp, local addr 10.0.100.2

protected vrf: (none)
local ident (addr/mask/prot/port): (192.168.64.0/255.255.255.240/0/0)
remote ident (addr/mask/prot/port): (192.168.64.16/255.255.255.240/0/0)
current_peer 10.0.100.10 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0
#pkts decaps: 0, #pkts decrypt: 0, #pkts verify: 0
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 0, #recv errors 0

local crypto endpt.: 10.0.100.2, remote crypto endpt.: 10.0.100.10
path mtu 1500, ip mtu 1500
current outbound spi: 0x0(0)

inbound esp sas:

inbound ah sas:

inbound pcp sas:

outbound esp sas:

outbound ah sas:

outbound pcp sas:

ROUTER 2

i

IPSec Cisco871 <-> Cisco871 - �� (Ash)

Fri, 08 Aug 2008 09:44:00 GMT

��
sh crypto ipsec sa
� �� ??

OpenForum RSS: IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������

IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������ (ViKu)

IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������ (Ash)

IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������ (sh_)

IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������ (papashko)

IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������ (papashko)

IPSec Cisco871 <-> Cisco871 - �� ������� �������� ������ (Ash)

OpenForum RSS: IPSec Cisco871 <-> Cisco871 - ��

IPSec Cisco871 <-> Cisco871 - �� (ViKu)

IPSec Cisco871 <-> Cisco871 - �� (Ash)

IPSec Cisco871 <-> Cisco871 - �� (sh_)

IPSec Cisco871 <-> Cisco871 - �� (papashko)

IPSec Cisco871 <-> Cisco871 - �� (papashko)

IPSec Cisco871 <-> Cisco871 - �� (Ash)