Manualshelf

Technical information

ManualsBrandsCisco ManualsComputer equipmentWS-SVC-IPSEC-1= - IPSec VPN Services Module
51525354555657585960
57
IPSec VPN Acceleration Services Module Installation and Configuration Note
78-14459-03 Rev C0
Configuring a VPN Using the VPN Module
Step 6 From interface configuration mode, create a Layer 3 inside interface VLAN and attach a crypto map as
follows:
a. Router# config t
Enter configuration commands, one per line. End with CNTL/Z.
b. Router(config)# interface vlan 171
c. Router(config-if)# description inside_interface_vlan_for_crypto_map
d. Router(config-if)# ip address 192.168.100.254 255.255.255.0
e. Router(config-if)# crypto map map101
f. Router(config-if)# no shutdown
Step 7 From interface configuration mode, add inside interface VLAN 171 as an allowed VLAN as follows:
Router(config)# interface gigabitethernet 5/1
Router(config-if)# description inside_vpn_module_trunk_port
Router(config-if)# switchport trunk allowed vlan add 171
Step 8 From interface configuration mode, create the outside trunk port VLAN interface and connect it to the
inside interface VLAN as follows:
a. Router(config)# interface vlan 271
b. Router(config-if)# description outside_trunk_port_vlan
c. Router(config-if)# crypto connect vlan 171
d. Router(config-if)# no shutdown
Step 9 From interface configuration mode, configure a trunked switch port and add the outside trunk port
VLAN (VLAN 271) as an allowed VLAN as follows:
a. Router(config)# interface gigabitethernet 1/2
b. Router(config-if)# description outside_trunk_port_vlan
c. Router(config-if)# switchport
d. Router(config-if)# no switchport access vlan
e. Router(config-if)# switchport trunk encapsulation dot1q
f. Router(config-if)# switchport mode trunk
g. Router(config-if)# switchport trunk allowed vlan remove 2-1001
h. Router(config-if)# switchport trunk allowed vlan add 271