Question on Lab 15 - VPN

From: Lopez, James (james.lopez@xxxxxxxxxxxxxx)
Date: Tue Dec 04 2001 - 21:22:34 GMT-3

• Next message: Sasa Milic: "Re: BGP Regular Expression Quizz"
• Previous message: Frank Kim: "Filtering using NBAR"
• Next in thread: George Hansen: "Re: Question on Lab 15 - VPN"
• Maybe reply: George Hansen: "Re: Question on Lab 15 - VPN"
• Maybe reply: Chris Larson: "Re: Question on Lab 15 - VPN"
• Maybe reply: Chris Larson: "Re: Question on Lab 15 - VPN"
• Maybe reply: Chris Larson: "Re: Question on Lab 15 - VPN"
• Maybe reply: Baiao, Nuno: "RE: Question on Lab 15 - VPN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Hi Gang,

I'm missing something on encrypted VPN and I just can't seem to understand
why the access-list on the crypto map is using the Internet IP addresses
instead of the LAN addresses.

(i.e. on lab 15 - access-list 100 permit ip host 150.100.50.42 host
160.200.77.122)

Since the access-list is used to identify which traffic is encrypted, why
isn't it something like:

access-list 101 permit ip 10.0.0.0 0.255.255.255 10.5.8.0 0.0.0.255 on R8?

My current configuration is exactly like the answer sheet and I have
searched the archives and CCO and just can't seem to see the light.

> TIA,
> JL

• Next message: Sasa Milic: "Re: BGP Regular Expression Quizz"
• Previous message: Frank Kim: "Filtering using NBAR"
• Next in thread: George Hansen: "Re: Question on Lab 15 - VPN"
• Maybe reply: George Hansen: "Re: Question on Lab 15 - VPN"
• Maybe reply: Chris Larson: "Re: Question on Lab 15 - VPN"
• Maybe reply: Chris Larson: "Re: Question on Lab 15 - VPN"
• Maybe reply: Chris Larson: "Re: Question on Lab 15 - VPN"
• Maybe reply: Baiao, Nuno: "RE: Question on Lab 15 - VPN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:32:37 GMT-3