Sample Configurations
Encrypting Traffic Between Two Networks
Configuration File for the Public Gateway
Catalyst 4224 Access Gateway Switch Software Configuration Guide
11-10
The sample configurations in this section show you how to encrypt traffic
between a private network (10.103.1.x) and a public network (98.98.98.x) using
IPSec. The 98.98.98.x network knows the 10.103.1.x network by the private
addresses. The 10.103.1.x network knows the 98.98.98.x network by the public
addresses.
gateway-2b# show running config
Building configuration...
Current configuration:
!
version 12.0
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname gateway-2b
!
ip subnet-zero
!
ip audit notify log
ip audit po max-events 100
!
crypto isakmp policy 1
hash md5
authentication pre-share
crypto isakmp key cisco123 address 95.95.95.2
!
crypto ipsec transform-set rtpset esp-des esp-md5-hmac
!
crypto map rtp 1 ipsec-isakmp
set peer 95.95.95.2
set transform-set rtpset
match address 115
!
interface Ethernet0/0
ip address 98.98.98.1 255.255.255.0
no ip directed-broadcast
!
interface Ethernet0/1
ip address 99.99.99.2 255.255.255.0
Chapter 11
Configuring Encryption Services
OL-2031-02