Software Guide
Page 4
...Verifying Your Configuration 4-10 5 C H A P T E R Configuring a LAN with DHCP and VLANs 5-1 Configure DHCP 5-2 Configuration Example 5-4 Verify Your DHCP Configuration 5-4 Configure VLANs 5-5 Assign a Switch Port to a VLAN 5-6 Verify Your VLAN Configuration 5-6 6 C H A P T E R Configuring a VPN Using Easy VPN and an IPsec Tunnel 6-1 Configure the IKE Policy 6-3 Configure Group ...Crypto Map 6-5 Enable Policy Lookup 6-6 Configure IPsec Transforms and Protocols 6-6 Configure the IPsec Crypto Method and Parameters 6-7 Cisco Secure Router 520 Series Software Configuration Guide iv OL-14210-01
...Verifying Your Configuration 4-10 5 C H A P T E R Configuring a LAN with DHCP and VLANs 5-1 Configure DHCP 5-2 Configuration Example 5-4 Verify Your DHCP Configuration 5-4 Configure VLANs 5-5 Assign a Switch Port to a VLAN 5-6 Verify Your VLAN Configuration 5-6 6 C H A P T E R Configuring a VPN Using Easy VPN and an IPsec Tunnel 6-1 Configure the IKE Policy 6-3 Configure Group ...Crypto Map 6-5 Enable Policy Lookup 6-6 Configure IPsec Transforms and Protocols 6-6 Configure the IPsec Crypto Method and Parameters 6-7 Cisco Secure Router 520 Series Software Configuration Guide iv OL-14210-01
Software Guide
Page 37
.... Figure 3-1 shows a typical deployment scenario with NAT 4 2 5 Internet 3 6 7 121753 1 1 Multiple networked devices-Desktops, laptop PCs, switches 2 Fast Ethernet LAN interface (inside interface for NAT) 3 PPPoE client-Cisco Secure Router 520 Ethernet-to-Ethernet router 4 Point at which NAT occurs 5 Fast Ethernet WAN interface (outside interface for NAT) 6 Cable modem or other server (for...
.... Figure 3-1 shows a typical deployment scenario with NAT 4 2 5 Internet 3 6 7 121753 1 1 Multiple networked devices-Desktops, laptop PCs, switches 2 Fast Ethernet LAN interface (inside interface for NAT) 3 PPPoE client-Cisco Secure Router 520 Ethernet-to-Ethernet router 4 Point at which NAT occurs 5 Fast Ethernet WAN interface (outside interface for NAT) 6 Cable modem or other server (for...
Software Guide
Page 47
PPP over ATM provides a network solution with simplified address handling and straight user verification, as with NAT The Cisco Secure Router 520 ADSL-over-POTS and Cisco Secure Router 520 ADSL-over-ISDN routers support Point-to the LAN behind the router. 4 C H A P T E R Configuring PPP over... a typical deployment scenario with multiple networked devices-desktops, laptop PCs, switches 2 Fast Ethernet LAN interface (inside interface for NAT, 192.168.1.1/24) 3 PPPoA Client-Cisco Secure Router 520 ADSL-over-POTS or Cisco Secure Router 520 ADSL-over-ISDN router 4 Point at which NAT occurs 5 ATM ...
PPP over ATM provides a network solution with simplified address handling and straight user verification, as with NAT The Cisco Secure Router 520 ADSL-over-POTS and Cisco Secure Router 520 ADSL-over-ISDN routers support Point-to the LAN behind the router. 4 C H A P T E R Configuring PPP over... a typical deployment scenario with multiple networked devices-desktops, laptop PCs, switches 2 Fast Ethernet LAN interface (inside interface for NAT, 192.168.1.1/24) 3 PPPoA Client-Cisco Secure Router 520 ADSL-over-POTS or Cisco Secure Router 520 ADSL-over-ISDN router 4 Point at which NAT occurs 5 ATM ...
Software Guide
Page 61
Chapter 5 Configuring a LAN with identifiers ranging from 2 to 1001. For details about this command and additional parameters that can be set, see the Cisco IOS Switching Services Command Reference. Example: Router# vlan database Router(vlan)# Step 2 vlan vlan-id [media type] [name vlan-name] Example: Router(vlan)# vlan 2 media ethernet name ..., and returns to configure VLANs on your router, beginning in privileged EXEC mode: Command Step 1 vlan database Purpose Enters VLAN configuration mode. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 5-5
Chapter 5 Configuring a LAN with identifiers ranging from 2 to 1001. For details about this command and additional parameters that can be set, see the Cisco IOS Switching Services Command Reference. Example: Router# vlan database Router(vlan)# Step 2 vlan vlan-id [media type] [name vlan-name] Example: Router(vlan)# vlan 2 media ethernet name ..., and returns to configure VLANs on your router, beginning in privileged EXEC mode: Command Step 1 vlan database Purpose Enters VLAN configuration mode. OL-14210-01 Cisco Secure Router 520 Series Software Configuration Guide 5-5
Software Guide
Page 62
... Example: Router(config-if)# end Router# Exits interface mode and returns to the VLAN. Displays summary configuration information for all configured VLANs. • show vlan-switch-Entered from VLAN database mode. Verify Your VLAN Configuration Use the following commands to the VLAN. Step 2 switchport access vlan vlan-id Assigns a port to... Translational Bridged VLAN: 1002 Translational Bridged VLAN: 1003 VLAN ISL Id: 2 Name: VLAN0002 Media Type: Ethernet VLAN 802.10 Id: 100002 State: Operational MTU: 1500 Cisco Secure Router 520 Series Software Configuration Guide 5-6 OL-14210-01
... Example: Router(config-if)# end Router# Exits interface mode and returns to the VLAN. Displays summary configuration information for all configured VLANs. • show vlan-switch-Entered from VLAN database mode. Verify Your VLAN Configuration Use the following commands to the VLAN. Step 2 switchport access vlan vlan-id Assigns a port to... Translational Bridged VLAN: 1002 Translational Bridged VLAN: 1003 VLAN ISL Id: 2 Name: VLAN0002 Media Type: Ethernet VLAN 802.10 Id: 100002 State: Operational MTU: 1500 Cisco Secure Router 520 Series Software Configuration Guide 5-6 OL-14210-01
Software Guide
Page 63
... Media Type: Token Ring Net VLAN 802.10 Id: 101005 State: Operational MTU: 1500 Bridge Type: SRB Bridge Number: 1 STP Type: IBM Router# show vlan-switch VLAN Name Status Ports 1 default active Fa0, Fa1, Fa3 2 VLAN0002 active Fa2 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active...
... Media Type: Token Ring Net VLAN 802.10 Id: 101005 State: Operational MTU: 1500 Bridge Type: SRB Bridge Number: 1 STP Type: IBM Router# show vlan-switch VLAN Name Status Ports 1 default active Fa0, Fa1, Fa3 2 VLAN0002 active Fa2 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active...
Software Guide
Page 90
...; Apply Access Lists and Inspection Rules to the outside interface for NAT) 3 PPPoE or PPPoA client and firewall implementation-Cisco Secure Router 520 Series router 4 Point at which NAT occurs 5 Protected network 6 Unprotected network 7 Fast Ethernet or ATM WAN interface... a network deployment using PPPoE or PPPoA with Firewall Configured 4 2 7 3 5 6 121781 1 1 Multiple networked devices-Desktops, laptop PCs, switches 2 Fast Ethernet LAN interface (the inside interface for NAT) In the configuration example that follows, the firewall is applied to Interfaces A configuration example...
...; Apply Access Lists and Inspection Rules to the outside interface for NAT) 3 PPPoE or PPPoA client and firewall implementation-Cisco Secure Router 520 Series router 4 Point at which NAT occurs 5 Protected network 6 Unprotected network 7 Fast Ethernet or ATM WAN interface... a network deployment using PPPoE or PPPoA with Firewall Configured 4 2 7 3 5 6 121781 1 1 Multiple networked devices-Desktops, laptop PCs, switches 2 Fast Ethernet LAN interface (the inside interface for NAT) In the configuration example that follows, the firewall is applied to Interfaces A configuration example...
Software Guide
Page 136
...to the WAN interface using CHAP because it is the more secure of fixed-length cells that switch and multiplex all CSMA/CD LANs. TACACS+ Cisco Secure Router 520 Series routers support the Terminal Access Controller Access Control System Plus (TACACS+) protocol through a ... retransmit. The term is a high-speed multiplexing and switching protocol that it transmits. Ethernet was designed to all information for separate modular authentication, authorization, and accounting (AAA) facilities that Cisco Secure Router 520 Series routers support. Each ATM node must retransmit at ...
...to the WAN interface using CHAP because it is the more secure of fixed-length cells that switch and multiplex all CSMA/CD LANs. TACACS+ Cisco Secure Router 520 Series routers support the Terminal Access Controller Access Control System Plus (TACACS+) protocol through a ... retransmit. The term is a high-speed multiplexing and switching protocol that it transmits. Ethernet was designed to all information for separate modular authentication, authorization, and accounting (AAA) facilities that Cisco Secure Router 520 Series routers support. Each ATM node must retransmit at ...