What is a VPN lan-to-lan or also names site-to-site?
A lan-to-lan virtual private network (VPN) is a connection between two or more networks, such as a head office network and a branch office network. Many companies use lan-to-lan VPNs to leverage an internet connection for private traffic as an alternative to using MPLS circuits.
Lan-to-lan VPNs are frequently used by organizations with multiple offices in different locations that need access and use of corporate network. With a lan-to-lan VPN, a company can securely connect its head office network with its remote offices to communicate and share resources with them as a single network.
Configuring Cisco router:
crypto isakmp policy 10
encr 3des
authentication pre-share
group 2
crypto isakmp key A_STRONG_KEY address 1.1.1.1 no-xauth
crypto ipsec transform-set 3DES-SHA esp-3des esp-sha-hmac
access-list 100 permit ip 192.168.100.0 0.0.0.255 10.0.5.0 0.0.0.255
access-list 100 permit ip 10.0.5.0 0.0.0.255 192.168.100.0 0.0.0.255
crypto map PFVPN 15 ipsec-isakmp
set peer 1.1.1.1
set transform-set 3DES-SHA
set pfs group2
match address 100
interface gigabitethernet0/0
crypto map PFSVPNConfiguring pfSense router:
Remote Gateway: 2.2.2.2
Authentication Method: Pre-Shared Key
Negotiation Mode: Main
My Identifier: My IP Address
Pre-Shared Key: A_STRONG_KEY
Encryption Algorithm: 3DES
Hash Algorithm: SHA1
DH Key Group: 2
Lifetime: 28800
NAT Traversal: Disable
Mode: Tunnel
Local Network: LAN Subnet
Remote Network: 10.0.5.0/24
Protocol: ESP
Encryption Algorithm: 3DES
Hash Algorithm: SHA1
PFS Key Group: 2
Lifetime: 3600Need help with secure network interconnects or hybrid firewall environments?
→ Check out our Infrastructure & VPN Services
0 Comments