Section 5.0: IPSec/PPTP Configuration (10 points)

5.1. IPSec LAN-to-LAN Router-to-VPN3000 (4 points)

  1. Add a new Loopback1 on R2 with an IP address of 192.168.2.1/24. This loopback will serve as a private network on R1 to be encrypted.

  2. Configure a LAN-to-LAN IPSec tunnel between R2 and the VPN3000 concentrator for networks 192.168.2.0/24 and 192.168.1.0/24, respectively.

  3. Configure preshared authentication with all other parameters as appropriate.

  4. Configure the VPN3000 concentrator with IP addressing as shown in Figure 7-1. Configure the default route to R1.

  5. The VPN3000 concentrator should not peer to R2 with IP address 175.1.2.2.

  6. Do not add any static routes to achieve this task.

5.2. IPSec Remote Access to the Router (3 points)

  1. Configure remote access—VPN ...

Get CCIE Security Practice Labs now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial