In this video tutorial, we take a deep dive into all the components required to configure an IPsec tunnel between two sites. We cover the history of IPsec, discuss the components that make up the IPsec framework like Authentication Header (AH), Encapsulation Security Payload (ESP), Internet Key Exchange (IKE) (version 1 and version 2), the Internet Security Association and Key Management Protocol (ISAKMP) (phase 1 and phase 2), crypto maps, and how Static Virtual Tunnel Interfaces (SVTIs) are the “new” way to configure Site-to-Site IPsec VPNs. Three (3) videos will follow this one where I will do an SVTI with IKEv1, an SVTI with IKEv2, and a final video using IKEv2 with GRE over IPsec. Enjoy!
Here are the additional GRE/IPSec/SVTI videos I mentioned:
Supplemental Video Tutorial: GRE over IPsec w/IKEv1 and OSPF (47:57) – https://youtu.be/tF8fItQHJNY
Supplemental Video Tutorial: Static Tunnel Virtual Interface (SVTI) w/IKEv1 and Default ISAKMP/IPsec (26:40) – https://youtu.be/5g3qrKq8d6s
Supplemental Video Tutorial: Static Tunnel Virtual Interface (SVTI) w/IKEv1 w/Custom ISAKMP/IPsec (27:10) – https://youtu.be/kRyaOGaHJso
Supplemental Video Tutorial: Static Tunnel Virtual Interface (SVTI) w/IKEv2 (37:47) – https://youtu.be/RMXukF7uS_w Enjoy!
***This video is an in-depth tutorial and is far more than simply an answer key to the aforementioned Packet Tracer activity. This tutorial is being made to assist my UMGC CMIT-456 learners in their journey through the ENARSI v8 material so, if you are just looking for a shortcut or easy answers for the activity, this is not the video you should watch. However, if you are looking to gain a deeper understanding of GRE tunnels/overlays, my hope is that this will increase your comprehension and help you to become a better and more effective network engineer. Enjoy!
*This techtorial/Packet Tracer activity is all done running Cisco Modeling Labs (CML) v2.1.1-b19, some physical routers in my Evil Command Center Lab and/or Packet Tracer version 8.1.0 (for the Mac) which was just recently released! The MINIMUM version you can use for any of the new CCNAv8 curriculum activities is Packet Tracer v7.3.0! Be sure to leave your feedback and questions below and I hope I have earned the privilege of your time!