Chapter 10. Cisco Easy VPN


Terms you'll need to understand:

  • Easy VPN Server

  • Easy VPN Remote

  • Internet Key Exchange (IKE) dead peer detection (DPD)

  • Initial contact

  • Mode configuration

  • Split tunneling

  • Reverse Route Injection (RRI)

  • Dynamic crypto map

  • Extended Authentication (XAUTH)

  • Cisco Integrated Client (CIC)

  • Stateful

  • Simple Certificate Enrollment Protocol (SCEP)

  • Transparent tunneling

  • IP Security (IPSec) over TCP

  • IPSec over User Datagram Protocol (UDP)

Techniques you'll need to master:

  • Configuring the Easy VPN Server

  • Configuring IKE DPD

  • Defining an IP address pool

  • Defining groups that will receive the push policy

  • Defining Easy VPN group policies

  • Configuring group preshared keys

  • Assigning IP address pools to groups

  • Configuring group Domain Name System (DNS) domains

  • Configuring group DNS

  • Configuring group authorization

  • Configuring IKE Phase 2 policy

  • Defining group transform sets

  • Configuring dynamic crypto maps

  • Configuring RRI in dynamic crypto maps

  • Configuring Easy VPN Server to assign IP addresses

  • Assigning the group authorization method

  • Configuring crypto map to use dynamic crypto maps

  • Enabling IKE extended authentication



CCSP SECUR Exam Cram 2
CCSP SECUR Exam Cram 2 (642-501)
ISBN: B000MU86IQ
EAN: N/A
Year: 2003
Pages: 291
Authors: Raman Sud

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net