enable

configure terminal
hostname R_Internet
ipv6 unicast-routing
license boot module c2900 technology-package securityk9
y
license boot module c2900 technology-package uck9
y
DO WR
DO RELOAD

enable
configure terminal
hostname R_Internet
interface s0/0/0
ip add 192.168.101.1 255.255.255.252
ipv6 add 2001:dbd8:a:e:e101::1/64
ipv6 address fe80::7 link-local
no shutdown
ipv6 rip SENA enable
exit

interface s0/0/1
ip add 192.168.102.1 255.255.255.0
ipv6 add 2001:dbd8:b:e:e102::1/64
ipv6 address fe80::6 link-local
no shutdown
ipv6 rip SENA enable
exit

interface s0/1/0
ip add 10.5.60.2 255.255.255.252
ipv6 add 2001:dbd8:e:e60::1/64
ipv6 address fe80::1 link-local
no shutdown
ipv6 rip SENA enable
exit

router rip
version 2
network 192.168.101.0
network 192.168.102.0
network 10.5.60.0
exit

enable
configure terminal
hostname R_SedeA
ipv6 unicast-routing
interface s0/0/0
ip add 192.168.101.2 255.255.255.252
ipv6 add 2001:dbd8:a:e:e101::2/64
no shutdown
ipv6 rip SENA enable
exit
interface g0/0
ip add 192.168.10.1 255.255.255.192
ipv6 add 2001:dbd8:e1:e:10::1/64
no shutdown
ipv6 rip SENA enable
exit
router rip
version 2
network 192.168.101.0
network 192.168.10.1
exit

enable
configure terminal
hostname R_SedeB
ipv6 unicast-routing
interface s0/0/0
ip add 192.168.102.2 255.255.255.252
ipv6 add 2001:dbd8:a:e:e102::2/64
no shutdown
ipv6 rip SENA enable
exit

interface g0/0
ip add 192.168.20.1 255.255.255.128
ipv6 add 2001:dbd8:a1:ee:20::1/64
no shutdown
ipv6 rip SENA enable
exit

router rip
version 2
network 192.168.102.2
network 192.168.20.1
exit

enable
configure terminal
hostname R_SedePrincipal

ipv6 unicast-routing
interface s0/0/0
ip add 10.5.60.1 255.255.255.252
ipv6 add 2001:dbd8:e:e60::1/64
no shutdown
ipv6 rip SENA enable
exit

interface g0/0
ip add 172.162.6.1 255.255.255.240
ipv6 add 2001:dbd8:a1:e:20::1/64
no shutdown
ipv6 rip SENA enable
exit

router rip
version 2
network 10.5.60.1
network 172.162.6.1
exit

:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::::::::

SedeA_a_SedePrincipal

enable
configure terminal

crypto isakmp enable

crypto isakmp policy 10
authentication pre-share
encryption aes 256
group 5
lifetime 86400
exit

crypto isakmp key P4N4M3R1C4NS3D34 address 10.5.60.1

crypto ipsec security-association lifetime seconds 86400
crypto ipsec transform-set myset esp-aes esp-sha-hmac

access-list 101 permit ip 192.168.10.0 0.0.0.255 172.162.6.0 0.0.0.255

crypto map sedes 10 ipsec-isakmp

set peer 10.5.60.1
set pfs group5
set security-association lifetime seconds 86400
match address 101
set transform-set myset
end

configure terminal
interface s0/0/0
crypto map sedes
exit

do wr

::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

SedePrincipal_a_SedeA

enable
configure terminal
crypto isakmp enable
crypto isakmp policy 10
authentication pre-share
encryption aes 256
group 5
lifetime 86400
exit

crypto isakmp key P4N4M3R1C4NS3D34 address 192.168.101.2

crypto ipsec security-association lifetime seconds 86400
crypto ipsec transform-set myset esp-aes esp-sha-hmac

access-list 101 permit ip 172.162.6.0 0.0.0.255 192.168.10.0 0.0.0.255

crypto map sedes 10 ipsec-isakmp

set peer 192.168.101.2
set pfs group5
set security-association lifetime seconds 86400
match address 101
set transform-set myset
end

configure terminal
interface s0/0/0
crypto map sedes
exit

do wr

:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
::

SedePrincipal_a_SedeB

enable
configure terminal

crypto isakmp enable

crypto isakmp policy 20
authentication pre-share
encryption aes 256
group 5
lifetime 86400
exit

crypto isakmp key P4N4M3R1C4NS3D33 address 192.168.102.2

crypto ipsec security-association lifetime seconds 86400
crypto ipsec transform-set myset esp-aes esp-sha-hmac

access-list 102 permit ip 172.162.6.0 0.0.0.255 192.168.20.0 0.0.0.255

crypto map sedes 20 ipsec-isakmp

set peer 192.168.102.2
set pfs group5
set security-association lifetime seconds 86400
match address 102
set transform-set myset
end

configure terminal
interface s0/0/0
crypto map sedes
exit

do wr
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

SedeB_a_SedePrincipal

enable
configure terminal

crypto isakmp enable

crypto isakmp policy 20
authentication pre-share
encryption aes 256
group 5
lifetime 86400
exit

crypto isakmp key P4N4M3R1C4NS3D33 address 10.5.60.1

crypto ipsec security-association lifetime seconds 86400
crypto ipsec transform-set myset esp-aes esp-sha-hmac

access-list 101 permit ip 192.168.20.0 0.0.0.255 172.162.6.0 0.0.0.255

crypto map sedes 20 ipsec-isakmp

set peer 10.5.60.1
set pfs group5
set security-association lifetime seconds 86400
match address 101
set transform-set myset
end

configure terminal
interface s0/0/0
crypto map sedes
exit

do wr

---------------------------------------------------------------------------
sedeA a sede principal

crypto isakmp policy 1

authentication pre-share
hash md5
group 1
encryption 3des
lifetime 86400
exit
crypto isakmp key 0 cisco address ipv6 2001:dbd8:e:e60::2/64
crypto keyring ANILLO
pre-shared-key address ipv6 2001:dbd8:e:e60::2/64 key cisco
exit
crypto ipsec transform-set TRANSFORMADA esp-3des
crypto ipsec profile PERFIL
set transform-set TRANSFORMADA
exit
interface tunnel 0
ipv6 address 2001:dbd8:eee:e60::1/64
ipv6 enable
tunnel source 2001:dbd8:e:e101::2
tunnel destination 2001:dbd8:e:e60::2
tunnel mode ipsec ipv6
tunnel protection ipsec profile PERFIL
ipv6 route 2001:dbd8:a1:e:20::/64 tunnel 0
exit

crypto isakmp policy 1

authentication pre-share
hash md5
group 1
encryption 3des
lifetime 86400
exit
crypto isakmp key 0 cisco address ipv6 2001:1111:aaaa:2222::2/128
crypto keyring ANILLO
pre-shared-key address ipv6 2001:1111:aaaa:2222::2/128 key cisco
exit
crypto ipsec transform-set TRANSFORMADA esp-3des
crypto ipsec profile PERFIL
set transform-set TRANSFORMADA
exit
interface tunnel 0
ipv6 address 2001:1111:aaaa:4444::1/64
ipv6 enable
tunnel source 2001:1111:aaaa:2222::1
tunnel destination 2001:1111:aaaa:2222::2
tunnel mode ipsec ipv6
tunnel protection ipsec profile PERFIL
ipv6 route 2001:1111:aaaa:3333::/64 tunnel 0
exit
----------------------------------------------------------------------------------
ipv6
enable
configure terminal

crypto isakmp enable

crypto isakmp policy 2
authentication pre-share
hash md5
group 5
encryption 3des
lifetime 86400
exit

crypto isakmp key 0 P4N4M3R1C4NS3D34 address ipv6 2001:dbd8:e:e60::1/64

crypto keyring anillo
pre-shared-key address ipv6 2001:dbd8:e:e60::1/64 key P4N4M3R1C4NS3D34
exit
crypto ipsec transform-set TRANSFORMADA esp-3des
crypto ipsec profile SedeA
set transform-set TRANSFORMADA
exit

interface tunnel 0
ipv6

access-list 102 permit ip 192.168.10.0 0.0.0.255 172.162.6.0 0.0.0.255

crypto map SedeA_a_SedePrincipal 10 ipsec-isakmp

set peer 10.5.60.1
set pfs group5
set security-association lifetime seconds 86400
match address 101
set transform-set myset
end

configure terminal
interface s0/0/0
crypto map SedeA_a_SedePrincipal
exit

do wr

----------------------------------------------------------------------------
enable
configure terminal

no crypto isakmp enable

no crypto isakmp policy 1
authentication pre-share
encryption aes 256
group 5
lifetime 86400
exit

no crypto isakmp key P4N4M3R1C4NS3D34 address 10.5.60.1

no crypto ipsec security-association lifetime seconds 86400
no crypto ipsec transform-set myset esp-aes esp-sha-hmac

no access-list 101 permit ip 192.168.10.0 0.0.0.255 172.162.6.0 0.0.0.255

no crypto map sedes 10 ipsec-isakmp

set peer 10.5.60.1
set pfs group5
set security-association lifetime seconds 86400
match address 101
set transform-set myset
end

configure terminal
interface s0/0/0
crypto map sedes
exit

do wr