Welcome to Bruno Bonfils's (aka asyd homepage).
Certificatespreshared key! crypto isakmp policy 1 encr 3des hash md5 authentication pre-share group 2 crypto isakmp key MyCrypTKey address <ipv4 peer> ! ! crypto ipsec transform-set FMS-Transform esp-3des esp-md5-hmac ! crypto map Fimasys-map 1 ipsec-isakmp set peer <ipv4 peer> set security-association lifetime seconds 86400 set transform-set FMS-Transform set pfs group2 match address 120 ! access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.66.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.1.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.10.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.0.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.99.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.35.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.3.0 0.0.0.255 access-list 120 permit ip 192.168.160.0 0.0.0.255 192.168.4.0 0.0.0.255 ! The ACL describe which (remote) network are reachable through the IPSec tunnel. |