Today we started with a serious lecture on EasyVPNs. EasyVPNs being a misnomer since it really isn't that easy and is in-fact quite complicated to setup and get working. I assume that this is probably what is used to have the interactive VPNs that Steve wants me to setup in the office.
I really didn't know what was going on in the first part of the day. Stephen blew through a lot of stuff on ACLs, Tunnel Groups, subneting and all this stuff very quickly. Again a little bit of my lack of previous experience is setting in but I'm getting a better feel for it. I don't feel nearly as lost as I did on the first day of class.
The lecturing went all the way to lunch and after lunch we are supposed to spend the rest of the day configuring our firewalls to do the EasyVPN solution so that another group can connect to our internal network and we can connect to another groups internal network.
The first part after lunch went really quick. We had all the ACLs and nat transversal's setup that we needed and then we led into getting them to work with the ISAKMP policies and we ran into some minor road bumps. It's well planned that we use the rest of the day to get this part configured and setup, the time is definitely needed in order to get things setup and working properly.
We got to the end of the day and our firewall was able to receive connections from the outside to get in and we were able to connect to another groups firewall. This was a very informative day. I learned a lot getting this setup and my familiarity with the command structure got fleshed out. We had to rebuild twice to get all of the configurations in the right order and the right place. Helps to do some things over again to get them down.
Tomorrow we are going to spend time on the contextual mode for the firewalls. Apparently we have to rebuild the firewall from the ground up when we put it into a virtual mode. I guess we are going to be doing a lot of things over then.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment