how we can creat VPN..??? how it can be configured on cisco
switches..??? can we creat VPN on different networks..???
why we need to create VPN..??? kindly write complete
activity of commands to configure a VPN on switch..??? me
specially looking towards Jatendra and Shahin
- 1 Answers
- 4969 Views
- I also Faced
- E-Mail Answers
Answer / jitu
ok i am going to expalin at first how we cretae vpn on cisco
router first then it will be easy for understand to you on
l3 switches and l2 switches
ok let start
VPN=that is virtual private network it is set on the
workstaion or workdoamin such that any autrized person can
acess his network from out side network
this vpn can be configured by two process
1 pptp that is point to point tunlinh protoccol Microsoft
Point-to-Point Encryption Protocol (MPPE).
network diagram
pc-----internet-----router--------workstaions
pc=with pptp
internet ip=172.16.142.191
routere ethernet=10.130.13.13
now start
2621#configure termina
#vpdn enable
#vpdn-group 1
2621(config-vpdn)#accept-dialin
2621(config-vpdn-acc-in)#protocol pptp
2621(config-vpdn-acc-in)#virtual-template 1
2621(config-vpdn-acc-in)#exit
2621(config)#ip local pool test 192.168.1.1 192.168.1.250
2621(config)#interface virtual-template 1
2621(config-if)#encapsulation ppp
2621(config-if)#peer default ip address pool test
2621(config-if)#ip unnumbered FastEthernet0/0
2621(config-if)#no keepalive
2621(config-if)#ppp encrypt mppe auto
2621(config-if)#ppp authentication pap chap ms-chap
Cisco 2621 Router
2621#show run
Building configuration...
Current configuration : 1566 bytes
!
version 12.2
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
no service password-encryption
!
hostname 2621
!
boot system flash
logging queue-limit 100
enable secret 5 $1$dGFC$VA28yOWzxlCKyj1dq8SkE/
!
ip subnet-zero
ip cef
!
!
no ip domain lookup
ip domain name cisco.com
!
vpdn enable
!--- Enable VDPN.
!
vpdn-group 1
!--- Default PPTP VPDN group.
accept-dialin
protocol pptp
virtual-template 1
!
!
!
!
!
!
!
!
!
!
voice call carrier capacity active
!
!
!
!
!
!
!
no voice hpi capture buffer
no voice hpi capture destination
!
!
mta receive maximum-recipients 0
!
!
controller T1 0/0
framing sf
linecode ami
!
controller T1 0/1
framing sf
linecode ami
!
!
!
interface Loopback0
ip address 10.100.100.1 255.255.255.0
ip nat inside
!
interface FastEthernet0/0
ip address 172.16.142.191 255.255.255.0
no ip route-cache
no ip mroute-cache
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.130.13.13 255.255.0.0
duplex auto
speed auto
!
!--- Create virtual-template interface used for cloning
!--- virtual-access interfaces with the use of address pool test
!--- with CHAP authentication, PAP, and MS-CHAP.
interface Virtual-Template1
ip unnumbered FastEthernet0/0
peer default ip address pool test
no keepalive
ppp encrypt mppe auto
ppp authentication pap chap ms-chap
!
!--- Create IP pool named test and specify IP range.
ip local pool test 192.168.1.1 192.168.1.250
no ip http server
no ip http secure-server
ip classless
ip route 0.0.0.0 0.0.0.0 172.16.142.1
!
ip pim bidir-enable
!
!
!
call rsvp-sync
!
!
mgcp profile default
!
dial-peer cor custom
!
!
!
!
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password *************
login
!
!
end
this is the confrgation
expalnation of each steps i will give letter
this is my confrgation so some output is omited
| Is This Answer Correct ? | 6 Yes | 0 No |
mention the funtions about connection oriented and connectionless protocol and how it works ?
When a Distance Vector routing protocol detects that a connected network has gone down, it sends out a special routing update packet, telling all directly connected routers that the distance to the dead network is infinity. This is an example of which routing technology? A.) ICMP. B.) Only Link State routing protocols have this intelligence. C.) Triggered updates. D.) Garrison-4. E.) Split Horizon. F.) Poison Reverse.
Briefly explain the conversion steps in data encapsulation.
A server is running HTTP, SMTP and DHCP. Which of the following best explains how the server is able to handle all three services over the same connection? The server has separate buffer areas for each application and forwards all data to each service. If the data does not apply to that application, it is discarded. The server processes each packet one at a time and forwards the data to the application that indicates that it is waiting for a transmission to arrive. The data is discarded if it does not apply to that application. The server uses the destination port number in the TCP/UDP header to identify the service. The data is forwarded to the service identified by the port number. The server uses separate three-way handshake connections to control the flow of the data and relates the service to the proper connection. This relationship allows the server to pass the data to the proper service.
Routers that have Flash memory typically have a ore loaded copy of place IOS software. Which command should you use to make a backup copy of the software image onto a given network server? A. copy flash tftp B. save copy to tftp C. write backup tftp D. write, backup -server-name- E. copy backup to -server-name-
Which cable do you use to connect a PC directly to the fast ethernet interface on a router. For example if you wanted to do an IOS upgrade from your laptop?
what is secure hand shake protocol
Which OSI Reference Layer controls application to application communication? A.) Datalink B.) Network C.) Transport D.) Session E.) Physical
'Show cdp neighbors detail' show the following 3 pieces of information? A.) Hardware platform B.) Software version C.) Same as 'show version' command D.) Up to 1 address for each protocol E.) Non-direct connected routers
When you mistakenly type the wrong command at the Router# prompt the router does a DNS lookup which takes about 20 seconds. Which command can you enter to prevent the router doing this in future?
Is it possible that in a switched network that any port of the switch can be infected with any kind of viruses that jamed and create more traffic in network which cause slow network performance?
When you cords an IP address on a place router which command stale the IP processing on the interface? A. ip enable B. network ip-address C. ip address ip-address subnet mask D. the exit command from the enabled configuration E. copy running-configuration to startup-configuration
CCNA 
