88 lines
1.5 KiB
Plaintext
88 lines
1.5 KiB
Plaintext
Dla R1 i R2:
|
|
|
|
no int tunnel 1
|
|
no router ospf 1
|
|
|
|
|
|
Dla R1:
|
|
interface Loopback1
|
|
ip address 172.16.1.1 255.255.255.0
|
|
|
|
############################################
|
|
Dla R1:
|
|
crypto ikev2 keyring KEYR1
|
|
peer R2
|
|
address 198.51.100.2
|
|
pre-shared-key local Cisco
|
|
pre-shared-key remote Cisco
|
|
|
|
|
|
crypto ikev2 profile Profil1
|
|
match identity remote address 198.51.100.2 255.255.255.255
|
|
authentication local pre-share
|
|
authentication remote pre-share
|
|
keyring local KEYR1
|
|
|
|
|
|
Dla R2:
|
|
crypto ikev2 keyring KEYR1
|
|
peer R1
|
|
address 192.0.2.1
|
|
pre-shared-key local Cisco
|
|
pre-shared-key remote Cisco
|
|
|
|
|
|
crypto ikev2 profile Profil1
|
|
match identity remote address 192.0.2.1 255.255.255.255
|
|
authentication local pre-share
|
|
authentication remote pre-share
|
|
keyring local KEYR1
|
|
|
|
|
|
|
|
Dla R1:
|
|
crypto ipsec transform-set TR1 esp-sha256-hmac esp-aes
|
|
|
|
crypto ipsec profile IPprof1
|
|
set transform-set TR1
|
|
set ikev2-profile Profil1
|
|
|
|
|
|
int tun 12
|
|
ip add 10.0.12.1 255.255.255.0
|
|
tunnel source 192.0.2.1
|
|
tunnel destination 198.51.100.2
|
|
tunnel protection ipsec profile IPprof1
|
|
tunnel mode ipsec ipv4
|
|
|
|
|
|
|
|
Dla R2:
|
|
crypto ipsec transform-set TR1 esp-sha256-hmac esp-aes
|
|
|
|
crypto ipsec profile IPprof1
|
|
set transform-set TR1
|
|
set ikev2-profile Profil1
|
|
|
|
|
|
int tun 12
|
|
ip add 10.0.12.2 255.255.255.0
|
|
tunnel source 198.51.100.2
|
|
tunnel destination 192.0.2.1
|
|
tunnel protection ipsec profile IPprof1
|
|
tunnel mode ipsec ipv4
|
|
|
|
|
|
Dla R1:
|
|
router eigrp 1
|
|
network 10.0.12.0 0.0.0.255
|
|
network 172.16.1.0 0.0.0.255
|
|
|
|
Dla R2:
|
|
router eigrp 1
|
|
network 10.0.12.0 0.0.0.255
|
|
network 172.16.2.0 0.0.0.255
|
|
|
|
|
|
|