CCNA site-to-site connectivity security
•Download as PPTX, PDF•
0 likes•279 views
5.1 VPN 5.2 Site-To-Site GRE Tunnels & IPsec
Recommended
More Related Content
What's hot
What's hot (20)
Viewers also liked
Viewers also liked (20)
Similar to CCNA site-to-site connectivity security
Similar to CCNA site-to-site connectivity security (20)
Recently uploaded
Recently uploaded (20)
CCNA site-to-site connectivity security
- 1. Copyright © www.networkel.com 5- Site-To-Site Connectivity Security 5.1 VPN 5.2 Site-To-Site GRE Tunnels & IPsec
- 3. Copyright © www.networkel.com VPNOVERVIEW • Virtual Private Network • Extends a private network across a public network, such as the Internet • Enables users to send and receive data across shared or public networks as if their computing devices were directly connected to the private network
- 4. Copyright © www.networkel.com BONUSSLIDE( PROMOTIONOFFER!) • To get our CCNA 200-125 Full Video Training with %90 discount click the link below now ! CCNA 200-125 VIDEO TRAINING (GET WITH %90 DISCOUNT)
- 5. Copyright © www.networkel.com VPNBENEFITS • Reduced cost : Everywhere is like an office • Scalability : Internet based VPNs enable organizations to use the Internet infrastructure within ISPs and devices • Security : Can provide high-level security using advanced authorization and encryption protocols
- 6. Copyright © www.networkel.com VPNTYPES • Site-To-Site VPN • Remote Access VPN • DMVPN
- 7. Copyright © www.networkel.com SITE-TO-SITEVPN • Allow employees in geographically disparate offices to share one cohesive virtual network • Hosts don't have VPN client software; they send and receive normal TCP/IP traffic through a VPN GW • The VPN GW is responsible for encapsulating and encrypting outbound traffic, sending it through a VPN tunnel over the Internet, to a peer VPN gateway at the target site.
- 8. Copyright © www.networkel.com REMOTEACCESSVPN • Allows employees to access their company's intranet from home or while travelling outside the office • VPN client gains secure access to the enterprise network via a VPN server • VPN client software may be required for connection
- 9. Copyright © www.networkel.com DMVPN • Dynamic tunneling form of a virtual private network (VPN) supported on Cisco IOS-based routers • Provides easy configuration and flexibility • Can use Hub-To-Spoke Tunnels or Hub-To-Spoke and Spoke-To-Spoke tunnels
- 10. Copyright © www.networkel.com 5.2 Site-To-Site GRE Tunnels
- 11. Copyright © www.networkel.com GREOVERVIEW • Tunneling protocol developed by Cisco that allows the encapsulation of a wide variety of network layer protocols inside point-to-point links • A virtual tunnel is created between the two endpoints and packets are sent through the GRE tunnel • Most basic tunneling technique
- 12. Copyright © www.networkel.com GREFEATURES • No flow control • Non-secure • GRE IP Protocol : 47
- 13. Copyright © www.networkel.com GRECONFIGURATION R1 (Customer) R2 (ISP) Tun 0 10.41.1.1 10.1.3.2 GRE TUNNEL Tun source 198.145.45.1 ( Public IP )
- 14. Copyright © www.networkel.com VERIFYINGGRECONFIGURATION R1 (Customer) R2 (ISP) Tun 0 10.41.1.1 10.1.3.2 GRE TUNNEL Tun source 198.145.45.1 ( Public IP )
- 15. Copyright © www.networkel.com 5.3 IPsec
- 16. Copyright © www.networkel.com IPsecOVERVIEW • Protocol suite for secure IP communications that works by authenticating and encrypting each IP packet of a communication session • Data travels securely from a private network over a public network • OSI Layer - 3
- 17. Copyright © www.networkel.com IPsecSECURITY • Confidentiality : Data is encrypted before it is sent • Integrity : Data's integrity is checked and it is verified that data has not been changed • Authentication : Use IKE (Internet Key Exchange ) to authenticate the users and make sure that source is reliable
- 18. Copyright © www.networkel.com BONUSSLIDE( PROMOTIONOFFER!) • To get our CCNA 200-125 Full Video Training with %90 discount click the link below now ! CCNA 200-125 VIDEO TRAINING (GET WITH %90 DISCOUNT)