Overview/Description
To implement IPSec site-to-site VPNs using SDM and GRE tunnels, and provide high-availability VPNs using backup interfaces
Target Audience
Network administrators; network engineers; network managers; systems managers; network designers who wish to validate their ability to install, configure and troubleshoot converged local and wide area networks with 100 to 500 nodes
Prerequisites
Completion of the course Interconnecting Cisco Network Devices (ICND)
recognize how to navigate the site-to-site VPN wizard interface, the components configured by the SDM site-to-site VPN wizard, how to launch the wizard, and how to set the parameters of the site-to-site VPN tunnel.
recognize how to define the traffic that the VPN protects and how to complete the configuration by viewing the settings in the Summary window.
recognize the characteristics of GRE, the purpose of secure GRE tunnels and how to configure them, how to set the parameters of the site-to-site VPN tunnel, and how to configure IKE using SDM.
recognize how to configure the IPSec transform set using the SDM wizard, how to configure routing, and how to view the settings in the Summary window.
recognize how high availability for IPSec VPNs is achieved and the use of IPSec backup peers.
recognize HSRP operation, IPSec stateful failover functionality, and how to back up a WAN connection using an IPSec VPN.
remove an IPSec VPN after a successful back up of a WAN connection in a given scenario.