Courseproject3_012124
docx
keyboard_arrow_up
School
Rasmussen College *
*We aren’t endorsed by this school
Course
CNT3126
Subject
Information Systems
Date
Feb 20, 2024
Type
docx
Pages
3
Uploaded by ConstableStingray2882
Module 03 Course Project Template
Process
Using the latest version of your Network Diagram from your previous project submission, identify the Data Center (s2s Data Center) and business Endpoints (s2s Business). Next, identify the Business Remote Access Endpoint and save the updated Network Diagram as a Visio Document. Now that you have identified the VPN endpoints, use Notepad to create your own version of CLI commands used to configure the endpoints. You should have 24 commands when you are done. Note:
The commands for the data center will be very similar to those of the business, but NOT exactly the same! Using the following Cisco Website as a reference. Look for the Heading “Configure via the CLI”. The hardware version is versions 8.4 and later:
Configure IKEv1 IPsec Site-to-Site Tunnels with the ASDM or CLI on the ASA
Once you have created the CLI commands for both the Data Center endpoint and the business endpoint for the site to site vpn, launch PacketTracer (PT-2) in the ISOT Sandbox.
While in PT-2, add two ASA 5505 Security Devices into the display separated by a WAN emulation (cloud-PT), connect each ASA using the “automatically select” connection type. Paste your CLI code into the command window for each ASA security device to test your configuration. Be sure to get screenshots of the results.
Now that you have successfully configured the site to site VPN, in Notepad you will now create the commands necessary to open up a remote access VPN to the business endpoint. You should have 24 commands when you are done.
Using the following Cisco Website as a reference. Look for the Heading “The following example shows how to configure a remote access IPsec/IKEv2 VPN”:
CLI Book 3: Cisco ASA Series VPN CLI Configuration Guide, 9.5
Once you have created the CLI commands for the remote access VPN , launch PacketTracer (PT-2) in the ISOT Sandbox.
Add an “ASA 5505 Security Devices” into the display connected to a WAN emulation (cloud-
PT), connect the ASA using the “automatically select” connection type. Paste your CLI code into the command window for each ASA security device to test your configuration. Next connect a generic PC to the WAN emulation (Cloud-PT). Configure the generic PC VPN client with the appropriate settings to match the ASA configuration and press “Connect”. Be sure to capture screen shots of the results.
Body
1. Attach your updated Visio Document reflecting the changes to your Network for this module.
2. Insert IOS Commands for ASA Security Device – s2s Data center that were used in your notepad.
3. Insert IOS Commands for ASA Security Device – s2s Business that were used in your notepad.
4. Insert IOS Commands for ASA Security Device – remote Access to Business that were used
in your notepad.
5. Insert Screen Shots of PT-2 result of the Site to Site VPN implementation
.
6. Insert Screen Shots of PT-2 results of the Remote Access Site VPN implementation.
Executive Summary
In this Executive Summary, discuss how the design work you implemented this week is aligned with the company’s overall strategic goals discussed in the Course Project Introduction.
The upcoming changes we are making to the network include adding an additional router that has VPN configured. We are adding this router to not only ensure that we enable remote access VPN
but in the event of a breach we are able to disable the router with minimal impact to the reminder of the network.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help