Section 5.0: IPSec/GRE Configuration (15 points)

5.1. IPSec (10 points)

5.1.1. IPSec Remote Access Using Preshared Key (3 points)

  1. Configure the remote-access VPN on PIX for clients coming from the outside network.

  2. Configure extended authentication using RADIUS.

  3. Assign the IP address, WINS, and DNS from PIX.

  4. Assign IP from VPNPool of 172.16.1.0/24.

  5. Assign WINS server IP is 200.200.200.200.

  6. Assign DNS server IP is 200.200.200.201.

  7. Configure group name lab2 and password cisco.

  8. Test PC should use the tunnel to reach networks behind PIX only.

  9. Verify from Test PC in VLAN-4 by pinging AAA server 10.50.34.254.

  10. Make sure you have a route on Test PC for 110.50.13.64/28 pointing to 110.50.32.1.

5.1.2. IPSec LAN-to-LAN Using Preshared Key (3 points)

  1. Encrypt GRE traffic ...

Get CCIE Security Practice Labs now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial