Category: IPSec IKEv1

Dynamic Virtual Tunnel Interface – Securing a Hub & Spoke Topology

Dynamic Virtual Tunnel Interface – Securing a Hub & Spoke Topology

The last post we talk about VTI to establish a connection between to points over the Internet. This connection was secure via IPSec and allowed dynamic routing protocols through it. The challenge in this post is to escalate this topology into multipoints, which is the usual topologies that we can encounter in the real world. … Continue reading Dynamic Virtual Tunnel Interface – Securing a Hub & Spoke Topology

Advertisements
Dynamic Routing Through IPSec Without GRE – Using VTI’s

Dynamic Routing Through IPSec Without GRE – Using VTI’s

On a previous post, we created a GRE tunnel to permit routing protocol through an insecure (Internet) network and protected it with IPSec. As you all should know GRE adds another layer of encapsulation (at least 4 bytes), which means more overhead. One major advantage compared with the traditional method of IPSec is that, since … Continue reading Dynamic Routing Through IPSec Without GRE – Using VTI’s

Remote Access VPN to a Cisco Router with different access profiles

Remote Access VPN to a Cisco Router with different access profiles

To continue solving Joaquim's problem we will create an Easy VPN Remote Access Server on a Cisco router with two different profiles. One profile will be dedicated to the client access  and the other profile will be dedicated to staff access. We will use DVTI (Dynamic Virtual Tunnels Interface) to be able to differentiate the … Continue reading Remote Access VPN to a Cisco Router with different access profiles

GRE IPSec Tunnel – Routing over the Tunnel

GRE IPSec Tunnel – Routing over the Tunnel

Using the same topology and part of the configuration of a previous post (IPSec IKEv1 Formula) we will configure a GRE (Generic Routing Encapsulation) to allow routing protocols (IGP - Interior Gateway Protocols) through the Internet safely. IPSec IKEv1 has a minor issue related to the packets that permits through, and this will be Unicast … Continue reading GRE IPSec Tunnel – Routing over the Tunnel