0% found this document useful (0 votes)

63 views64 pages

CCNASv2 InstructorPPT CH8.fr-2

Ce chapitre traite de la mise en œuvre des réseaux privés virtuels (VPN), en mettant l'accent sur les avantages, la comparaison entre VPN site à site et d'accès à distance, ainsi que sur le protocole IPsec et ses composants. Il décrit également les étapes de configuration d'un VPN IPsec, y compris la négociation et l'authentification. À la fin, les lecteurs devraient être en mesure de configurer un VPN site à site avec authentification par clé pré-partagée en utilisant la CLI.

Uploaded by

ziyadchadli6

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

63 views64 pages

CCNASv2 InstructorPPT CH8.fr-2

Uploaded by

ziyadchadli6

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

Chapitre 8:

La mise en œuvre des réseaux

privés virtuels

v2.0 CCNA sécurité

Translated by JE.BENRAHAL
June 2017
8.0 Présentation
8.1 réseaux privés virtuels
8.2 VPN IPsec Composants et
opérations
8.3 Mise en œuvre du site à site
VPN IPSec avec CLI
8.4 Résumé

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
À la fin de cette section, vous devriez pouvoir:
• Décrire réseaux privés virtuels et leurs avantages.

• Comparez le site à site et réseaux privés virtuels d'accès à distance.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
VPN Avantages:
• Économies de
coûts
• Sécurité

• évolutivité

• Compatibilité

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
Distance-accès VPN

Site à site VPN

d'accès

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
À la fin de cette section, vous devriez pouvoir:
• Décrire le protocole IPsec et ses fonctions de base.

• Comparer les protocoles AH et ESP.

• Décrire le protocole IKE.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
IPsec Exemples de mise en
cadre IPsec œuvre

Sécurité des algorithmes de

hachage

PSK

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Protocoles AH

Routeur Peer Compares Hash

recalculée à Hash reçu

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
Appliquer ESP et AH en deux
modes

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
À la fin de cette section, vous devriez pouvoir:
• Décrire la négociation IPsec et les cinq étapes de configuration IPsec.

• Configurez la stratégie ISAKMP.

• Configurer la stratégie IPSec.

• configurer et appliquer une carte Crypto.

• Vérifiez la IPsec VPN.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
VPN IPsec négociation:
Étape 1 - hôte A envoie le
trafic intéressant à l'hôte B.

VPN IPsec négociation:

Etape 2 - R1 et R2 négocier
une session IKE Phase 1.

VPN IPsec négociation:

Etape 3 - R1 et R2
négocier une session
IKE de phase 2.

VPN IPsec négociation:

Etape 5 - Le tunnel
IPsec est terminé.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
le Crypto isakmp clé Commander

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 53
Carte Crypto Commandes de configuration

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
Utilisez Ping prolongé pour envoyer le trafic Intéressant

• Expliquer comment IPsec Réseaux privés virtuels fonctionnent.

• configurer un IPsec de site à site VPN, l'authentification clé pré-partagée,

à l'aide de la CLI.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 62
Thank you.
• Rappelles toi, Il y a des
tutoriels utiles et guides
d'utilisation disponibles via
votre Netspace maison 1
page. (https: 2
//www.netacad.com)
• Ces ressources couvrent
une variété de sujets, y
compris la navigation, des
évaluations et des missions.
• Une capture d'écran a été
fourni ici mettant en lumière
les didacticiels liés à
l'activation des examens, la
gestion des évaluations, et
la création de
questionnaires.

CCNASv2 InstructorPPT CH8.Fr-2
No ratings yet
CCNASv2 InstructorPPT CH8.Fr-2
64 pages
Implementing IPsec VPNs in Cisco CCNA
No ratings yet
Implementing IPsec VPNs in Cisco CCNA
64 pages
IPSec VPNs - An Overview - Presentation
No ratings yet
IPSec VPNs - An Overview - Presentation
157 pages
Ipsec Presentation
No ratings yet
Ipsec Presentation
40 pages
Network Security: IPsec VPN Setup
No ratings yet
Network Security: IPsec VPN Setup
37 pages
Cisco VPN Tunnel Setup Guide
No ratings yet
Cisco VPN Tunnel Setup Guide
6 pages
Network Security v1.0 - Module 19
No ratings yet
Network Security v1.0 - Module 19
44 pages
Cisco Router IPSec VPN Configuration
No ratings yet
Cisco Router IPSec VPN Configuration
5 pages
Configuring A VPN Using Easy VPN and An Ipsec Tunnel: Figure 6-1
No ratings yet
Configuring A VPN Using Easy VPN and An Ipsec Tunnel: Figure 6-1
12 pages
8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLI
No ratings yet
8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLI
5 pages
IPsec Site To Site LAB
No ratings yet
IPsec Site To Site LAB
50 pages
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
No ratings yet
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
7 pages
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
No ratings yet
Configuring Site To Site IPSec VPN Tunnel Between Cisco Routers
4 pages
Router Vpnclient Pi Stick
No ratings yet
Router Vpnclient Pi Stick
10 pages
Sec 15 0s CG Sec Con Book
No ratings yet
Sec 15 0s CG Sec Con Book
935 pages
CCNA Security Chapter 8 Exam Answers
No ratings yet
CCNA Security Chapter 8 Exam Answers
16 pages
19.5.5 Packet Tracer - Configure and Verify A Site-to-Site IPsec VPN - ILM - No Commands
No ratings yet
19.5.5 Packet Tracer - Configure and Verify A Site-to-Site IPsec VPN - ILM - No Commands
4 pages
Troubleshooting Cisco IOS and PIX Firewall-Based IPSec Implementations
No ratings yet
Troubleshooting Cisco IOS and PIX Firewall-Based IPSec Implementations
54 pages
Chapter 7: Securing Site-to-Site Connectivity: Connecting Networks
No ratings yet
Chapter 7: Securing Site-to-Site Connectivity: Connecting Networks
54 pages
ENSA Module 8
No ratings yet
ENSA Module 8
19 pages
Easy VPN Configuration for Cisco 1800
No ratings yet
Easy VPN Configuration for Cisco 1800
12 pages
7.3.2.8 Packet Tracer - Configuring GRE Over IPsec Instructions
No ratings yet
7.3.2.8 Packet Tracer - Configuring GRE Over IPsec Instructions
5 pages
Configure and Verify A Site-to-Site IPsec VPN Using CLI
No ratings yet
Configure and Verify A Site-to-Site IPsec VPN Using CLI
7 pages
Configuring GRE Tunnel with IPsec
No ratings yet
Configuring GRE Tunnel with IPsec
18 pages
SNPA50SL11
No ratings yet
SNPA50SL11
48 pages
Information About Ipsec Network Security
No ratings yet
Information About Ipsec Network Security
34 pages
What Is VPN
No ratings yet
What Is VPN
37 pages
7.3.2.8 Packet Tracer - Configuring GRE Over IPsec Instructions
No ratings yet
7.3.2.8 Packet Tracer - Configuring GRE Over IPsec Instructions
5 pages
19.5.5 Packet Tracer - Configure and Verify A Site-to-Site IPsec VPN
No ratings yet
19.5.5 Packet Tracer - Configure and Verify A Site-to-Site IPsec VPN
5 pages
7.3.2.8 Packet Tracer - Configuring GRE Over IPsec Instructions
No ratings yet
7.3.2.8 Packet Tracer - Configuring GRE Over IPsec Instructions
5 pages
Cisco Network Security Specialist Exam Guide
No ratings yet
Cisco Network Security Specialist Exam Guide
4 pages
Cisco Network Security Exam Guide
No ratings yet
Cisco Network Security Exam Guide
4 pages
7.1.2.4 Packet Tracer - Configuring VPNs (Optional) Instructions
No ratings yet
7.1.2.4 Packet Tracer - Configuring VPNs (Optional) Instructions
6 pages
Lab 6.2b Secure IPSec Tunnel
No ratings yet
Lab 6.2b Secure IPSec Tunnel
12 pages
Week 5 Optional Assignment
No ratings yet
Week 5 Optional Assignment
16 pages
Site-to-Site IPsec VPN Configuration Guide
No ratings yet
Site-to-Site IPsec VPN Configuration Guide
4 pages
TroublesCisco IOS Firewallhooting Cisco IOS Firewall-Based and Cisco Secure PIX Firewall-Based IPSec VPNs
No ratings yet
TroublesCisco IOS Firewallhooting Cisco IOS Firewall-Based and Cisco Secure PIX Firewall-Based IPSec VPNs
54 pages
امن ٢
No ratings yet
امن ٢
58 pages
19.5.5 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN - ITExamAnswers
No ratings yet
19.5.5 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN - ITExamAnswers
5 pages
Computo
No ratings yet
Computo
13 pages
Asa 97 VPN Config
No ratings yet
Asa 97 VPN Config
460 pages
MindCert Cisco IPsec MindMap
No ratings yet
MindCert Cisco IPsec MindMap
1 page
Cisco IPsec VPN Configuration Guide
No ratings yet
Cisco IPsec VPN Configuration Guide
1 page
Brksec 3013 PDF
100% (1)
Brksec 3013 PDF
98 pages
Cisco IPSec VPN Configuration - IPSec For VPN
No ratings yet
Cisco IPSec VPN Configuration - IPSec For VPN
19 pages
Configure Site-to-Site IPsec VPN
No ratings yet
Configure Site-to-Site IPsec VPN
6 pages
Building IPSEC VPNS Using Cisco Routers: © 2003, Cisco Systems, Inc. All Rights Reserved. SECUR 1.0 - 9-1
No ratings yet
Building IPSEC VPNS Using Cisco Routers: © 2003, Cisco Systems, Inc. All Rights Reserved. SECUR 1.0 - 9-1
118 pages
Site-To-Site Vpns. - : Scor Page 1
No ratings yet
Site-To-Site Vpns. - : Scor Page 1
14 pages
Configure IPsec VPN on Cisco Routers
No ratings yet
Configure IPsec VPN on Cisco Routers
3 pages
Site To Site VPN CLI Configuration On Gns3
No ratings yet
Site To Site VPN CLI Configuration On Gns3
6 pages
Introducing VPN Solutions: LAN Extension Into A WAN
No ratings yet
Introducing VPN Solutions: LAN Extension Into A WAN
21 pages
Cisco Router VPN Setup Guide
No ratings yet
Cisco Router VPN Setup Guide
6 pages
Cisco ASA Security Guide
No ratings yet
Cisco ASA Security Guide
9 pages
MikroTik Certification Exam Questions
No ratings yet
MikroTik Certification Exam Questions
52 pages
TCP Congestion Control Explained
No ratings yet
TCP Congestion Control Explained
24 pages
Cisco IOS 15.0S SLB Config Guide
No ratings yet
Cisco IOS 15.0S SLB Config Guide
189 pages
Cloud Computing Assignment Questions and Solutions
No ratings yet
Cloud Computing Assignment Questions and Solutions
6 pages
BGP Overview and Training Insights
No ratings yet
BGP Overview and Training Insights
30 pages
Week 3 CN
No ratings yet
Week 3 CN
5 pages
Q Bank Bca DCN Bca Nep 503
No ratings yet
Q Bank Bca DCN Bca Nep 503
5 pages
EIGRP Routing Protocol Guide
No ratings yet
EIGRP Routing Protocol Guide
26 pages
Networking Essentials For Cybersecurity
50% (2)
Networking Essentials For Cybersecurity
10 pages
SPAN and SSH Configuration Lab Guide
No ratings yet
SPAN and SSH Configuration Lab Guide
14 pages
Release Notes Omnistack 6200
No ratings yet
Release Notes Omnistack 6200
28 pages
9.2.1 Packet Tracer - Configure Multiarea OSPFv3 - ITExamAnswers
No ratings yet
9.2.1 Packet Tracer - Configure Multiarea OSPFv3 - ITExamAnswers
3 pages
Computer Networks Lab Report
No ratings yet
Computer Networks Lab Report
44 pages
Brkcol 3021
No ratings yet
Brkcol 3021
167 pages
Wincc pcs7 Lmhost e
No ratings yet
Wincc pcs7 Lmhost e
6 pages
Test Bank For Business Data Networks and Security 11th Edition by Raymond R. Panko
No ratings yet
Test Bank For Business Data Networks and Security 11th Edition by Raymond R. Panko
13 pages
ARP Packet Analysis Steps Guide
No ratings yet
ARP Packet Analysis Steps Guide
9 pages
Single-Area OSPFv2 Concepts Explained
No ratings yet
Single-Area OSPFv2 Concepts Explained
46 pages
Chapter 5 - Data Link Control Protocols
No ratings yet
Chapter 5 - Data Link Control Protocols
31 pages
Comprehensive Linux Command List
No ratings yet
Comprehensive Linux Command List
10 pages
RGPV CN Cheat Sheet
No ratings yet
RGPV CN Cheat Sheet
2 pages
Understanding MAC Layer Protocols
No ratings yet
Understanding MAC Layer Protocols
70 pages
VPLS Configuration for IPLL-VS1-MANULIFE
No ratings yet
VPLS Configuration for IPLL-VS1-MANULIFE
2 pages
Module 1
No ratings yet
Module 1
64 pages
12jku0142 - BNG MNC B2B - SVC0 - 18032025 - 042073
No ratings yet
12jku0142 - BNG MNC B2B - SVC0 - 18032025 - 042073
16 pages
Free HPE7-A01 Exam Questions Guide
No ratings yet
Free HPE7-A01 Exam Questions Guide
16 pages
Network Engineer Resume with Projects
No ratings yet
Network Engineer Resume with Projects
5 pages
Vyos1 4 PDF
No ratings yet
Vyos1 4 PDF
1,587 pages
Network Simulation and Modeling
No ratings yet
Network Simulation and Modeling
12 pages