ACIT - CCNA Training India - VPN

1,918 views
1,810 views

Published on

Acit offer various certification courses like CCNA, CCNA SECURITY, CCNA VOICE, CCNP, CCIP, CCSP, CCVP, CCIE RS, CCIE SP, CCIE SEC, CHECKPOINT, MCITP, AND MORE

Published in: Education, Technology
3 Comments
5 Likes
Statistics
Notes
No Downloads
Views
Total views
1,918
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
247
Comments
3
Likes
5
Embeds 0
No embeds

No notes for slide

ACIT - CCNA Training India - VPN

  1. 1. VPN Virtual Private Network
  2. 2. Virtual Private Network <ul><li>VPN is a service that offers secure & reliable communication over a shared public network. </li></ul><ul><li>VPN carries private traffic over a public network using advanced encryption and tunnel methods to provide </li></ul><ul><ul><li>Confidentiality of information </li></ul></ul><ul><ul><li>Integrity of data </li></ul></ul><ul><ul><li>Authentication of user </li></ul></ul><ul><ul><li>Anti-replay </li></ul></ul>
  3. 3. Cont…. <ul><li>Data packet is encrypted & encapsulated </li></ul><ul><li>with a new header to provide security. </li></ul>
  4. 4. VPN can be configured in many ways <ul><li>Point to point </li></ul><ul><li>Point to Multipoint </li></ul><ul><li>Client initiated (Remote Access) </li></ul>
  5. 5. Tunneling Protocols <ul><li>L2TP </li></ul><ul><li>L2F </li></ul><ul><li>PPTP </li></ul><ul><li>IPSec </li></ul><ul><li>GRE </li></ul>
  6. 6. Cont… <ul><li>GRE: Generic Routing Encapsulation </li></ul><ul><ul><li>GRE does not provide encryption. </li></ul></ul><ul><ul><li>It supports both IP or Non-IP Unicast and Multicast </li></ul></ul><ul><ul><li>It encapsulates IP, CLNP, IPX protocols inside IP Packet. </li></ul></ul><ul><li>L2TP: Layer 2 Tunneling Protocol. </li></ul><ul><ul><li>It does not provide Encryption. </li></ul></ul><ul><ul><li>It is a combination of Cisco L2F(Layer 2 Forwarding) and Microsoft PPTP </li></ul></ul><ul><ul><li>It can forward IP and Non IP unicast, multicast and Broadcast traffic </li></ul></ul>
  7. 7. Cont… <ul><li>IPSec: Internet Protocol Security . </li></ul><ul><ul><li>It is an open Standard Protocol </li></ul></ul><ul><ul><li>It supports Unicast IP </li></ul></ul><ul><ul><li>It Provides Data Security by Encryption </li></ul></ul><ul><ul><li>It provides data integrity </li></ul></ul><ul><ul><li>It provides Tunneling </li></ul></ul>
  8. 8. GRE Site-to-Site VPN LAN: 192.168.1.0/24 LAN: 192.168.3.0/24 E0 192.168.1.1/24 E0 192.168.3.1/24 11.0.0.1 S0 12.0.0.1 S1
  9. 9. HydConfig telnet 192.168.1.1 Connecting… WELCOME TO HYDERBAD ROUTER User Access Verification Password: **** Hyderabad> Enable Password: **** Hyderabad# Configure Terminal Enter configuration commands, one per line. End with CNTL/Z. HYDERABAD(config)# Interface Serial 0 HYDERABAD(config-if)# Ip address 11.0.0.1 255.0.0.0 HYDERABAD(config-if)# No shut HYDERABAD(config-if)# Encapsulation ppp HYDERABAD(config-if)# exit HYDERABAD(config)# HYDERABAD(config-if)# HYDERABAD(config-if)# Configuring Tunnel Router(config)# interface tunnel <no> Router(config-if)# Ip address <ip address> <mask> Router(config-if)# Tunnel Source <ip address> Router(config-if)# Tunnel Destination <ip address> Interface tunnel 10 Ip address 192.168.0.1 255.255.255.0 Tunnel source 11.0.0.1 HYDERABAD(config-if)# Tunnel Destination 12.0.0.1 HYDERABAD(config-if)# Exit HYDERABAD(config)# C:>
  10. 10. CheConfig telnet 192.168.3.1 Connecting… WELCOME TO Chennai ROUTER User Access Verification Password: **** Chennai> Enable Password: **** Chennai# Configure Terminal Enter configuration commands, one per line. End with CNTL/Z. Chennai(config)# Interface Serial 1 Chennai(config-if)# Ip address 12.0.0.1 255.0.0.0 Chennai(config-if)# No shut Chennai(config-if)# Encapsulation ppp Chennai(config-if)# exit Chennai(config)# Chennai(config-if)# Chennai(config-if)# Interface tunnel 10 Ip address 192.168.0.2 255.255.255.0 Tunnel source 12.0.0.1 Chennai(config-if)# Tunnel Destination 11.0.0.1 Chennai(config-if)# Exit Chennai(config)# Configuring Tunnel Router(config)# interface tunnel <no> Router(config-if)# Ip address <ip address> <mask> Router(config-if)# Tunnel Source <ip address> Router(config-if)# Tunnel Destination <ip address> C:>
  11. 11. Hydping ping 192.168.3.10 Pinging 192.168.3.10 with 32 bytes of data: Reply from 192.168.3.10: bytes=32 time=48ms TTL=126 Reply from 192.168.3.10: bytes=32 time=48ms TTL=126 Reply from 192.168.3.10: bytes=32 time=48ms TTL=126 Reply from 192.168.3.10: bytes=32 time=48ms TTL=126 Ping statistics for 192.168.3.10: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 48ms, Maximum = 48ms, Average = 48ms C:> C:>
  12. 12. hydtrace tracert 192.168.3.10 Tracing route to 192.168.3.10 over a maximum of 30 hops 1 1 ms 1 ms 1 ms Hyd [192.168.1.1] 2 55 ms 55 ms 71 ms 192.168.0.2 3 64 ms 64 ms 64 ms 192.168.3.10 Trace complete. C:> C:>

×