tunnel destination 10.10.10.1
!
!
interface Tunnel2
ip address 172.10.0.2 255.255.255.0
tunnel source FastEthernet0/0
tunnel destination 10.10.13.1
!
!
interface FastEthernet0/0
ip address 10.10.12.2 255.255.255.0
duplex auto
speed auto
crypto map CISCO1
!
interface FastEthernet0/1
ip address 10.10.11.2 255.255.255.0
duplex auto
speed auto
!
interface Ethernet0/1/0
ip address 22.22.5.1 255.255.255.0
duplex auto
speed auto
!
interface Ethernet0/3/0
ip address 192.168.4.1 255.255.255.0
ip access-group 110 out
duplex auto
speed auto
!
interface Vlan1
no ip address
shutdown
!
router eigrp 1
network 10.10.11.0 0.0.0.255
network 10.10.12.0 0.0.0.255
no auto-summary
!
router ospf 1
log-adjacency-changes
network 192.168.4.0 0.0.0.255 area 0
network 22.22.5.0 0.0.0.255 area 0
network 172.10.0.0 0.0.0.255 area 0
network 172.10.1.0 0.0.0.255 area 0
!
ip
classless
!
!
access-list 102 permit gre host 10.10.12.2 host 10.10.13.1
access-list 110 permit udp host 22.22.5.2 host 192.168.4.2 eq domain
access-list 110 permit udp host 22.22.5.6 host 192.168.4.2 eq domain
access-list 110 permit tcp host 22.22.5.4 host 192.168.4.2 eq www
access-list 110 permit tcp host 22.22.5.6 host 192.168.4.2 eq www
access-list 110 deny udp any any
access-list 110 deny tcp any any
access-list 110 permit ip any any
!
Приложение 2
Маршрутизатор R1
hostname R1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
no ip domain lookup
!
crypto isakmp policy 20
authentication pre-share
crypto isakmp key 123 address 0.0.0.0 0.0.0.0
!
!
crypto ipsec transform-set DMVPN-TR esp-des esp-md5-hmac
mode transport
!
crypto ipsec profile DMVPN
set transform-set DMVPN-TR
!
!
!
interface Tunnel1
ip address 20.20.1.2 255.255.255.0
no ip redirects
ip mtu 1416
ip nhrp authentication nhrppass
ip nhrp map 20.20.1.1 192.168.5.1
ip nhrp map multicast 192.168.5.1
ip nhrp network-id 111
ip nhrp nhs 20.20.1.1
ip nhrp registration no-unique
tunnel source FastEthernet0/0
tunnel destination 192.168.5.1
tunnel key 111
tunnel protection ipsec profile DMVPN
!
interface Tunnel2
bandwidth 1000
ip address 20.20.0.1 255.255.255.0
no ip redirects
ip mtu 1416
ip hold-time eigrp 1 35
no ip next-hop-self eigrp 1
ip nhrp authentication nhrppass
ip nhrp map multicast dynamic
ip nhrp network-id 999
no ip split-horizon eigrp 1
tunnel source FastEthernet0/0
tunnel
mode gre multipoint
tunnel key 999
tunnel protection ipsec profile DMVPN
!
!
interface Loopback1
ip address 10.10.0.3 255.255.255.0
!
!
!
interface FastEthernet0/0
ip address 192.168.0.1 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
router eigrp 1
network 10.10.0.0 0.0.0.255
network 20.20.0.0 0.0.0.255
network 20.20.1.0 0.0.0.255
no auto-summary
!
router ospf 1
log-adjacency-changes
network 192.168.0.0 0.0.0.255 area 0
МаршрутизаторR2
hostname R2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
resource policy
!
memory-size iomem 5
ip cef
!
!
!
!
no ip domain lookup
!
!
crypto isakmp policy 20
authentication pre-share
crypto isakmp key 123 address 0.0.0.0 0.0.0.0
!
!
crypto ipsec transform-set DMVPN-TR esp-des esp-md5-hmac
mode transport
!
crypto ipsec profile DMVPN
set transform-set DMVPN-TR
!
interface Tunnel1
ip address 20.20.0.2 255.255.255.0
no ip redirects
ip mtu 1416
ip nhrp authentication nhrppass
ip nhrp map 20.20.0.1 192.168.0.1
ip nhrp map multicast 192.168.0.1
ip nhrp network-id 999
ip nhrp nhs 20.20.0.1
ip nhrp registration no-unique
tunnel source FastEthernet0/0
tunnel destination 192.168.0.1
tunnel key 999
tunnel protection ipsec profile DMVPN
!
Уважаемый посетитель!
Чтобы распечатать файл, скачайте его (в формате Word).
Ссылка на скачивание - внизу страницы.