Home > Archive > Cisco Security exams > November 2003 > IPSEC on a Cisco 801





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author IPSEC on a Cisco 801
wimpie

2003-11-14, 8:24 am

Hi ,

I got 2 cisco 801 routers for testing , I've
installed the IPsec IOS on it and I've playing around with it .

I tried to configure on this way that the telnet traffic to each other gets encrypted.

I succeeded in this if I use the following extended ACL :
permit ip host 200.0.0.202 host 200.0.0.200 eq telnet

on the other router I installed the opposite and this works fine . The problem is that all traffic gets encrypted and that's not my goal.

when I use the following rule :
permit tcp host 200.0.0.202 host 200.0.0.200 eq telnet
(and the opposite on the other router)
the debugging info of the router tells me that there is something wrong with my ACL.

I tried also with adding the following rules
permit ahp host 200.0.0.202 host 200.0.0.200
permit esp host 200.0.0.202 host 200.0.0.200
permit udp host 200.0.0.202 host 200.0.0.200 eq isakmp (11 matches)
permit tcp host 200.0.0.202 host 200.0.0.200 eq telnet

but no luck , does anybody have an idea about this ?

thx

Wim
Sponsored Links





Free Braindumps | MCSE braindumps software forum

Copyright 2003 - 2008 examnotes.net