Virtual Private Network: Internet

Download as pptx, pdf, or txt
Download as pptx, pdf, or txt
You are on page 1of 9

VPN: Virtual Private Network

Internet
Server
File VPN
LAN f0/0 Optical f0/0 LAN
Converter Converter
Network Network
Lease Line
MegaWan & Metronet
VPN Classification
GRE VPN: Site-to-Site VPN
interface tunnel 1 interface tunnel 0
ip add 10.0.13.1 255.255.255.0 ip add 10.0.13.3 255.255.255.0
tunnel source 1.0.12.1 tunnel source f0/0
tunnel destination 1.0.23.3 tunnel destination 1.0.12.1
ip route 10.0.3.0
NAT 255.255.255.0 tunnel1 NAT
Data 10.0.1.1 10.0.3.3 1.0.12.1 1.0.23.3
1.0.12.1

.1 LAN HCM 1.0.12.1 ISP 1.0.23.3 HCM LAN .3


PC1 PC2
tunn el0
e tunn
10.0.1.0/24 10.0.13.1/24 l1 VPN 10.0.13.3/24 10.0.3.0/24

ping

Server
File
GRE VPN: Site-to-Site VPN
interface tunnel 1 interface tunnel 0
ip add 10.0.13.1 255.255.255.0 ip add 10.0.13.3 255.255.255.0
tunnel source 1.0.12.1 tunnel source f0/0
tunnel destination 1.0.23.3 tunnel destination 1.0.12.1
ip route 10.0.3.0
NAT 255.255.255.0 tunnel1 NAT
Data 10.0.1.1 10.0.3.3 1.0.12.1 1.0.23.3

.1 LAN HCM 1.0.12.1 ISP 1.0.23.3 HCM LAN .3


PC1 PC2
tunn el0
e tunn
10.0.1.0/24 10.0.13.1/24 l1 VPN 10.0.13.3/24 10.0.3.0/24

ping

Server
File
GRE VPN: Generic Routing Encapsulation

• 24-byte overhead (20-byte IP header and 4-byte GRE header)


GRE VPN: Site-to-Site VPN
Generic Routing Encapsulation

OSI Layer 3 tunneling protocol:


• Uses IP for transport
• Uses an additional header to support any other OSI Layer 3
protocol as payload (e.g., IP, IPX, AppleTalk)
Default GRE Characteristics

• Tunneling of arbitrary OSI Layer 3 payload is the primary


goal of GRE
• 24-byte overhead by default (20-byte IP header and 4-byte
GRE header)
GRE Configuration Example

• GRE tunnel is up and protocol up if:


– Tunnel source and destination are configured
– Tunnel destination is in routing table
– GRE keepalives are received (if used)
• GRE is the default tunnel mode.

You might also like