Section 5.0: IPSec/GRE Configuration (10 points) - CCIE Security Practice Labs [Book]

Skip to main content

Get CCIE Security Practice Labs now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.

Start your free trial

Section 5.0: IPSec/GRE Configuration (10 points)

5.1. IPSec (5 points)

5.1.1. IPSec LAN-to-LAN Using Preshared (2 points)

Encrypt IDS traffic between PIX and R4 in Section 6.2.1. Use a preshared key and SHA for message authentication and DES for encryption. Configure all other parameters as you feel appropriate.

5.1.2. Advanced IPSec LAN-to-LAN (3 points)

Configure IPSec to encrypt GRE traffic between R6 and R3 in Section 5.2.
Use preshared keys. Configure all other parameters as you feel appropriate.
If there is a loss of connectivity between two IPSec peers, terminate the sessions.
You are allowed to put one static route but not a default route on the PIX to achieve this task.

5.2. GRE (5 points)

Configure GRE through PIX; R6 should see all loopbacks ...

Get CCIE Security Practice Labs now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.

Start your free trial