Anyconnect VPN Mastering lab by UD
Posted: Fri Oct 20, 2017 8:11 pm
Hello guys,
one more lab from me about Anyconnect VPN.
Images Used in LAB:
vIOS L3 15.6.1T
ASAv 981 can be 971
L2 IRON 15.2 IOL Switch, any L2 IOL switch will be ok
VPCS as host
Windows 7 hosts as AnyConnect client
image: anyconnect-win-4.5.02033-webdeploy-k9.pkg
https://software.cisco.com/download/rel ... ype=latest
Lab Tasks.
Configure scenario with given IP address.
Home LAN/Internet use your own Cloud subnet IPs
1. Configure IP SEC tunnel with preshared key eve10 between HQ ASA and Branch office vIOS
2. Tunneled interesting networks are inside and dmz of HQ and Branch
3. Using home LAN and TFTP upload anyconnect image to ASA and vIOS
4. Configure HQ ASA RA VPN
5. HQ RA VPN username/password is user/eve10
6. HQ RA VPN tunneled networks are inside and dmz
7. Configure Branch vIOS RA VPN
8. Branch RA VPN tunneled networks are inside and dmz
9. Windows7 remote users must be able to reach dmz and inside networks on HQ and Branch.
Win7-BR AnyConnect, connected to vIOS, user must be able ping networks in HQ, inside and dmz
Win7-HQ user, connected to ASA, must be able ping networks in Branch, inside and dmz
Cheers,
UD
one more lab from me about Anyconnect VPN.
Images Used in LAB:
vIOS L3 15.6.1T
ASAv 981 can be 971
L2 IRON 15.2 IOL Switch, any L2 IOL switch will be ok
VPCS as host
Windows 7 hosts as AnyConnect client
image: anyconnect-win-4.5.02033-webdeploy-k9.pkg
https://software.cisco.com/download/rel ... ype=latest
Lab Tasks.
Configure scenario with given IP address.
Home LAN/Internet use your own Cloud subnet IPs
1. Configure IP SEC tunnel with preshared key eve10 between HQ ASA and Branch office vIOS
2. Tunneled interesting networks are inside and dmz of HQ and Branch
3. Using home LAN and TFTP upload anyconnect image to ASA and vIOS
4. Configure HQ ASA RA VPN
5. HQ RA VPN username/password is user/eve10
6. HQ RA VPN tunneled networks are inside and dmz
7. Configure Branch vIOS RA VPN
8. Branch RA VPN tunneled networks are inside and dmz
9. Windows7 remote users must be able to reach dmz and inside networks on HQ and Branch.
Win7-BR AnyConnect, connected to vIOS, user must be able ping networks in HQ, inside and dmz
Win7-HQ user, connected to ASA, must be able ping networks in Branch, inside and dmz
Cheers,
UD