User Tools
cisco:security:2
Table of Contents
Cisco - Security - VPN - 2- IKEv1 L2L 001 - Lab Bootstrap Configuration
Device Code
csr1 Internet Routers
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr1 int g1 ip add 21.0.0.1 255.255.255.0 no shut int g2 ip add 31.0.0.1 255.255.255.0 no shut int g3 ip add 41.0.0.1 255.255.255.0 no shut int g4 ip add 51.0.0.1 255.255.255.0 no shut int g5 ip add 61.0.0.1 255.255.255.0 no shut int g6 ip add 11.0.0.1 255.255.255.0 no shut end wr
csr2 Dual Hub for HQ
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr2 int g1 ip add 21.0.0.2 255.255.255.0 no shut int g2 ip add 172.16.1.2 255.255.255.0 no shut end wr
csr3 Dual Hub for HQ
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr3 int g1 ip add 31.0.0.3 255.255.255.0 no shut int g2 ip add 172.16.1.3 255.255.255.0 no shut end wr
csr4 Branch
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr4 int g1 ip add 41.0.0.4 255.255.255.0 no shut int g2 ip add 10.4.8.4 255.255.255.0 no shut end wr
csr5 Branch
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr5 int g1 ip add 51.0.0.5 255.255.255.0 no shut int g2 ip add 10.5.8.5 255.255.255.0 no shut end wr
csr6 Branch
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr6 int g1 ip add 61.0.0.6 255.255.255.0 no shut int g2 ip add 10.6.8.6 255.255.255.0 no shut end wr
csr7
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr7 int g1 ip add 172.16.1.7 255.255.255.0 no shut int lo0 ip add 10.1.0.7 255.255.255.0 int lo1 ip add 10.1.1.7 255.255.255.0 int lo2 ip add 10.1.2.7 255.255.255.0 int lo3 ip add 10.1.3.7 255.255.255.0 end wr
csr8
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname csr8 vrf def s4 add ipv4 un add ipv6 un vrf def s5 add ipv4 un add ipv6 un vrf def s6 add ipv4 un add ipv6 un vrf def s11 add ipv4 un add ipv6 un int g1 no shut int g 1.4 en do 4 vrf for s4 ip add 10.4.8.8 255.255.255.0 int g 1.5 en do 5 vrf for s5 ip add 10.5.8.8 255.255.255.0 int g 1.6 en do 6 vrf for s6 ip add 10.6.8.8 255.255.255.0 int g 1.11 en do 11 vrf for s11 ip add 10.8.11.8 255.255.255.0 int lo172240 vrf for s4 ip add 172.24.0.8 255.255.255.0 int lo 172250 vrf for s5 ip add 172.25.0.8 255.255.255.0 int lo 172260 vrf for s6 ip add 172.26.0.8 255.255.255.0 int lo 19216840 vrf for s4 ip add 192.168.40.8 255.255.255.0 int lo 19216850 vrf for s5 ip add 192.168.50.8 255.255.255.0 int lo 19216860 vrf for s6 ip add 192.168.60.8 255.255.255.0 int lo 192168100 vrf for s11 ip add 192.168.100.8 255.255.255.0 end wr
asa1 Branch
en ciscocisco conf t terminal width 500 hostname asa1 int g 0/0 ip add 11.0.0.11 255.255.255.0 nameif outside no shut int g 0/1 ip add 10.8.11.11 255.255.255.0 nameif inside no shut wr
sw9
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname sw9
sw10
en conf t no ip domain lookup line con 0 logg syn width 500 exec-timeout 0 0 exit hostname sw10 vlan 4-6,11 exit int g0/0 sw ac vl 4 sw mo acc span portf int g 0/1 sw acc vl 5 sw mo acc span portf int g 0/2 sw acc vl 6 sw mo acc span portf int g 0/3 sw acc vl 11 int g 1/0 sw en do sw mo tr end wr
Verifications
csr1
csr2
csr3
csr4
csr5
csr6
csr7
csr8
asa1
sw9
sw10
cisco/security/2.txt · Last modified: by adminent
