Advertisement

10.12.2004 at 10:17AM PDT, ID: 21165396
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
5.8

Router to router VPN using 3 Cisco 827 4V - 500 points

Asked by Silvereme in Virtual Private Networking (VPN)

Tags: ,

Hello:

I have 3 cisco routers connected to Internet by ADSL and fixed IP and to a LAN and I want to create a Router to router VPN. I've basic knowledge con cisco IOS but I cant make it work.

Office 1 (central office)
192.168.XXX.XXX]-[ROUTER1]-[10.10.10.10]-[WAN]

Office 2 (remote 1)
192.169.XXX.XXX]-[ROUTER2]-[20.20.20.20]-[WAN]

Office 3 (remote 2)
192.170.XXX.XXX]-[ROUTER3]-[30.30.30.30]-[WAN]

(10.10.10.10, 20.20.20.20 and 30.30.30.30 are all public fixed IP addresses and the 192.XXX.0.0 are the inside LAN (the IP of the router is on all ofices 192.XXX.254.254) The XXX changes from one office to another)

Note that the mask (LAN) is 255.255.0.0 (NOT 255.255.255.0) The IPs are for this example (they are not good), the definitive will be others...

We have on all routers the IOS Version 12.2(8)T5 and all are 827 4V

All I want is to be able to ping from every computer on every office to all other computers on other offices as if all the computers where on the same LAN.

As I've readed, the encryption for the VPN may be MD5 or SHA, as I've readed MD5 is faster but provides lower level of security, I prefer to use SHA (if it is the more secure, as I think. If you think I'm wrong, make it with you think is safer)

The routers will need access to internet as now (for the computers in each office to get acces to the internet using their own router (no internet traffic over the VPN link I mean)

The system should be capable to accept more offices when needed.

I suppouse my config files will have a lot of crap so, I'm going to put here the starting configs (only internet conection, nothing on VPN) for office 1 and 2

The accepted answer will be the 3 config files corrected to work in the VPN and if two answers, the cleaner and better commented.

This is very urgent.

Config for Office 1 (central office):
---------------------------------------
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname OFICINA1
!
logging rate-limit console 10 except errors
enable secret 5 ************
!
username ********* password 7 *******************
!
ip subnet-zero
no ip finger
no ip domain-lookup
!
no ip dhcp-client network-discovery
call rsvp-sync
!
voice class codec 1
 codec preference 1 g729r8
 codec preference 2 g723r63
 codec preference 3 g711ulaw
!
!
!
interface Ethernet0
 ip address 192.168.254.254 255.255.0.0
 ip nat inside
 no ip mroute-cache
 hold-queue 100 out
!
interface ATM0
 ip address 10.10.10.10 255.255.255.0
 ip nat outside
 no atm ilmi-keepalive
 pvc 8/32
  protocol ip 10.10.10.2 broadcast
  encapsulation aal5snap
 !
 bundle-enable
 dsl operating-mode auto
 hold-queue 224 in
!
ip classless
ip route profile
ip route 0.0.0.0 0.0.0.0 10.10.10.2
ip http server
ip http access-class 15
!
ip nat inside source list 1 interface ATM0 overload
!
!
ip nat inside source static tcp 192.168.254.254 23 10.10.10.10 23 extendable
ip nat inside source static udp 192.168.254.254 23 10.10.10.10 23 extendable
!
!
ip nat inside source static tcp 192.168.11.2 5631 10.10.10.10 5631 extendable
ip nat inside source static udp 192.168.11.2 5632 10.10.10.10 5632 extendable
!
!
access-list 1 permit any
access-list 2 permit any
!
voice-port 1
 cptone ES
 timeouts interdigit 4
!
voice-port 2
 cptone ES
 timeouts interdigit 4
!
voice-port 3
 cptone ES
 timeouts interdigit 4
!
voice-port 4
 cptone ES
 timeouts interdigit 4
!
dial-peer voice 1 pots
 destination-pattern 2531
 port 1
!
dial-peer voice 2 pots
 destination-pattern 2532
 port 2
!
dial-peer voice 3 pots
 destination-pattern 2533
 port 3
!
dial-peer voice 4 pots
 destination-pattern 2534
 port 4
!
dial-peer voice 2008 voip
 shutdown
 destination-pattern 254
 session target ipv4:81.214.13.22
!
dial-peer voice 5 voip
 destination-pattern 666T
 session target ipv4:81.214.13.22
!
gateway
!
!
line con 0
 exec-timeout 0 0
 login
 transport input none
 stopbits 1
line vty 0 4
 session-timeout 60
 exec-timeout 0 0
 password 7 **************
 login
!
scheduler max-task-time 5000
end






Config for Office 2 (remote office 1):
---------------------------------------
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname OFICINA2
!
logging rate-limit console 10 except errors
enable secret 5 ************
!
username ********* password 7 *******************
!
ip subnet-zero
no ip finger
no ip domain-lookup
!
no ip dhcp-client network-discovery
call rsvp-sync
!
voice class codec 1
 codec preference 1 g729r8
 codec preference 2 g723r63
 codec preference 3 g711ulaw
!
!
!
interface Ethernet0
 ip address 192.169.254.254 255.255.0.0
 ip nat inside
 no ip mroute-cache
 hold-queue 100 out
!
interface ATM0
 ip address 20.20.20.20 255.255.255.0
 ip nat outside
 no atm ilmi-keepalive
 pvc 8/32
  protocol ip 20.20.20.2 broadcast
  encapsulation aal5snap
 !
 bundle-enable
 dsl operating-mode auto
 hold-queue 224 in
!
ip classless
ip route profile
ip route 0.0.0.0 0.0.0.0 20.20.20.2
ip http server
ip http access-class 15
!
ip nat inside source list 1 interface ATM0 overload
!
!
ip nat inside source static tcp 192.169.254.254 23 20.20.20.20 23 extendable
ip nat inside source static udp 192.169.254.254 23 20.20.20.20 23 extendable
!
!
ip nat inside source static tcp 192.169.11.2 5631 20.20.20.20 5631 extendable
ip nat inside source static udp 192.169.11.2 5632 20.20.20.20 5632 extendable
!
!
access-list 1 permit any
access-list 2 permit any
!
voice-port 1
 cptone ES
 timeouts interdigit 4
!
voice-port 2
 cptone ES
 timeouts interdigit 4
!
voice-port 3
 cptone ES
 timeouts interdigit 4
!
voice-port 4
 cptone ES
 timeouts interdigit 4
!
dial-peer voice 1 pots
 destination-pattern 2531
 port 1
!
dial-peer voice 2 pots
 destination-pattern 2532
 port 2
!
dial-peer voice 3 pots
 destination-pattern 2533
 port 3
!
dial-peer voice 4 pots
 destination-pattern 2534
 port 4
!
dial-peer voice 2008 voip
 shutdown
 destination-pattern 254
 session target ipv4:81.12.113.212
!
dial-peer voice 5 voip
 destination-pattern 666T
 session target ipv4:81.12.113.212
!
gateway
!
!
line con 0
 exec-timeout 0 0
 login
 transport input none
 stopbits 1
line vty 0 4
 session-timeout 60
 exec-timeout 0 0
 password 7 **************
 login
!
scheduler max-task-time 5000
end
Start Free Trial
 
Keywords: Router to router VPN using 3 Cisco 8…
Title
1 VoIP Config Question on Cisco 5400
2 VoIP On Cisco Routers
3 VoIP over VPN
4 VOIP basic requirements  ???
5 VoIP Ballpark Pricing
6 Voice over VPN
 
Loading Advertisement...
 
[+][-]10.12.2004 at 11:46AM PDT, ID: 12290474

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 01:46AM PDT, ID: 12295857

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 01:51AM PDT, ID: 12295885

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 05:42AM PDT, ID: 12297392

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 07:57AM PDT, ID: 12298837

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 08:01AM PDT, ID: 12298872

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 08:03AM PDT, ID: 12298900

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 08:15AM PDT, ID: 12299068

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 08:47AM PDT, ID: 12299488

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zone: Virtual Private Networking (VPN)
Tags: 827, cisco
Sign Up Now!
Solution Provided By: lrmoore
Participating Experts: 2
Solution Grade: A
 
 
[+][-]10.13.2004 at 09:39AM PDT, ID: 12299966

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 09:46AM PDT, ID: 12300028

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 09:47AM PDT, ID: 12300035

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 09:54AM PDT, ID: 12300085

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 10:03AM PDT, ID: 12300168

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 10:06AM PDT, ID: 12300190

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 10:35AM PDT, ID: 12300472

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 10:49AM PDT, ID: 12300641

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 11:52AM PDT, ID: 12301315

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 12:06PM PDT, ID: 12301429

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 12:36PM PDT, ID: 12301734

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.13.2004 at 12:53PM PDT, ID: 12301950

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.14.2004 at 12:47AM PDT, ID: 12305798

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.15.2004 at 03:02AM PDT, ID: 12317448

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]10.15.2004 at 05:39AM PDT, ID: 12318448

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]10.15.2004 at 05:55AM PDT, ID: 12318616

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]04.08.2005 at 08:54AM PDT, ID: 13737574

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]12.27.2005 at 05:38PM PST, ID: 15559967

Experts Exchange has a courteous staff of administrators who help members get the most out of the website by means of administrative comments like this one.

Start your 7-day free trial to view this Administrative Comment or ask the Experts your question.

 
[+][-]12.31.2005 at 08:36AM PST, ID: 15584314

Experts Exchange has a courteous staff of administrators who help members get the most out of the website by means of administrative comments like this one.

Start your 7-day free trial to view this Administrative Comment or ask the Experts your question.

 
 
Loading Advertisement...
20081112-EE-VQP-42