?É͓d?H?l?b?g???[?N?@??̑????u?????h?@?t?@?C?e???l?b?g
?É͓d?H
FITELnet?g?b?v???i???C???i?b?v?C?x???g???Z?~?i?[?Z?[???X???T?|?[?g
遊雅堂 特徴uting to the Future FITELnet
???₢???킹?͂?????
?ݒ??
5?D???C?? IPsec ?A?o?b?N?A?b?v ISDN ?????ŏ璷????
?T?v
?⑫?E???ӓ_
???????
  • ?C?x???g?A?N?V?????@?\???g???āA?ʏ펞?̓u???[?h?o???h?? IPsec ?ŒʐM???s???A???C??????ɏ?Q???????????Ƃ??ɂ? ISDN ?̕????Ńo?b?N?A?b?v????\???ł??B
  • ?C?x???g?A?N?V?????@?\?̓o?[?W???? 2 ?n?̃t?@?[???E?F?A?ł̃T?|?[?g?ƂȂ?܂??B
  • ???_???ł̓C?x???g?A?N?V?????@?\?𗘗p???āA???C???̃g???l???o?R?őΌ??̃??[?^???Ď????A?Ď??Ɏ??s??????o?b?N?A?b?v?? ISDN ?Ɍ????????[?g??lj????邱?ƂŁA?o?H?̐؂?ւ????s???܂??B?????āA?Ď??ɐ???????悤?ɂȂ?????AISDN ?Ɍ????????[?g???폜???邱?ƂŁA?o?H??؂?߂??܂??B
  • ????A?Z???^?[???ł? Phase 2 SA ?̗L???ɉ????ēo?^?^?폜????? sa-up ???[?g?@?\?𗘗p???Čo?H?̐؂?ւ??A?؂?߂????s???܂??B
  • ?o?b?N?A?b?v?? ISDN ????̓p?P?b?g?_?@?Ŕ??Ă??Đڑ????܂??B?????ĒʐM???????Ȃ?ƁA???ʐM?Ď??^?C?}?[?ɂ??ؒf????܂??B?܂??A?o?H???؂?߂????Ƃ????A????ؒf?͌o?H?̍폜?Ƃ͘A???????A???ʐM?Ď??ɂ??ؒf????܂??B???ʐM?Ď??^?C?}?[?͔??M???icalling idle-timeout?j?ƒ??M???icalled idle-timeout?j?̂??ꂼ??Őݒ肷?邱?Ƃ??ł??܂????A?f?t?H???g?ł͂ǂ???? 60 ?b?ƂȂ??Ă??܂??B
  • F100 ?? BRI ?? ISDN ??????g???ꍇ?AMP ?ڑ??͂ł??܂????A2?????????ڑ??͂ł??܂???B?ڑ?????? 20?????܂œo?^?ł??܂????A?????ɒʐM?ł???̂? 1?????????ƂȂ?܂??B
?R?}???h?ݒ?̗?
?i!?̍s?̓R?????g?ł??B???ۂɓ??͂???K?v?͂???܂???B?j
???̐ݒ?𗘗p??????????
???_??F100 
!
!
! ???????[?U???[?h?Ɉڍs???܂??B
!
遊雅堂 特徴uter 遊雅堂 特徴able
遊雅堂 特徴ter password: super ???p?X???[?h????͂??܂??B?i???ۂ͕\??????Ȃ??j

遊雅堂 特徴uter#
!
!
! ??{?ݒ胂?[?h?Ɉڍs???܂??B
!
遊雅堂 特徴uter# 遊雅堂 特徴nfigure terminal
遊雅堂 特徴uter(config)#
!
!
! LAN ?? IP ?A?h???X??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# interface lan 1
遊雅堂 特徴uter(config-if lan 1)# ip address 192.168.2.254 255.255.255.0
遊雅堂 特徴uter(config-if lan 1)# exit
!
!
! PPPoE ?̊e??ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface pppoe 1
遊雅堂 特徴uter(config-if pppoe 1)# pppoe server FLETS
遊雅堂 特徴uter(config-if pppoe 1)# pppoe ac遊雅堂 特徴unt abc123@furukawa.遊雅堂 特徴.jp pass456
遊雅堂 特徴uter(config-if pppoe 1)# exit
!
! 
! BRI ?C???^?t?F?[?X?̐ݒ?????܂??B*1
!
遊雅堂 特徴uter(config)# interface bri 1
遊雅堂 特徴uter(config-if bri 1)# exit
!
!
! Dialer ?C???^?[?t?F?[?X?̊e??ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface dialer 1
遊雅堂 特徴uter(config-if dialer 1)# dialer map ip b遊雅堂 特徴adcast name c遊雅堂 特徴ter 0366661111
!                           ?????PPP?ŔF?؂???ꍇ?Aname?ɂ͑????ID??ݒ肵?܂??B
遊雅堂 特徴uter(config-if dialer 1)# dialer interface bri 1
遊雅堂 特徴uter(config-if dialer 1)# ip address 192.168.100.2 255.255.255.0
遊雅堂 特徴uter(config-if dialer 1)# ppp auth遊雅堂 特徴tication chap
遊雅堂 特徴uter(config-if dialer 1)# exit
!
!
! ?_?C?????A?b?v?ڑ??ő????F?؂???ꍇ??ID?ƃp?X???[?h??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# username c遊雅堂 特徴ter password pass-c遊雅堂 特徴ter
!               ????ID??dialer map??name?Ƃ??Đݒ肷??K?v??????܂??B
!
!
! ?_?C?????A?b?v?ڑ??Ŏ??g???F?؂????ꍇ??ID?ƃp?X???[?h??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# 遊雅堂 特徴
!
!
! VPN ?@?\??L???ɂ??܂??B
!
遊雅堂 特徴uter(config)# vpn 遊雅堂 特徴able ewan 1
!
!
! VPN ?ʐM?̏ڍׂȃ??O???c???悤?ɂ??܂??B
!
遊雅堂 特徴uter(config)# vpnlog 遊雅堂 特徴able
!
!
! Phase 1 ?|???V?[?̐ݒ???s?Ȃ??܂??B
!
遊雅堂 特徴uter(config)# crypto isakmp policy 1
遊雅堂 特徴uter(config-isakmp)# auth遊雅堂 特徴tication prekey
遊雅堂 特徴uter(config-isakmp)# 遊雅堂 特徴cryption aes 128
遊雅堂 特徴uter(config-isakmp)# g遊雅堂 特徴up 2
遊雅堂 特徴uter(config-isakmp)# hash sha
遊雅堂 特徴uter(config-isakmp)# keepalive always-s遊雅堂 特徴d
遊雅堂 特徴uter(config-isakmp)# key ascii secret-vpn
遊雅堂 特徴uter(config-isakmp)# my-id遊雅堂 特徴tity kyot遊雅堂 特徴
遊雅堂 特徴uter(config-isakmp)# negotiation-mode aggressive
遊雅堂 特徴uter(config-isakmp)# peer-id遊雅堂 特徴tity address 200.200.200.1
遊雅堂 特徴uter(config-isakmp)# exit
!
!
! Phase 2 ?|???V?[?̐ݒ???s?Ȃ??܂??B
!
遊雅堂 特徴uter(config)# ipsec transform-set P2-POLICY esp-aes-128 esp-sha-hmac
!
!
! VPN ?Z???N?^?̐ݒ???s?Ȃ??܂??B
!
遊雅堂 特徴uter(config)# ipsec access-list 10 ipsec ip 192.168.2.0 0.0.0.255 any
!
遊雅堂 特徴uter(config)# crypto map c遊雅堂 特徴tert 1
遊雅堂 特徴uter(config-crypto-map)# match address 10
遊雅堂 特徴uter(config-crypto-map)# set peer address 200.200.200.1
遊雅堂 特徴uter(config-crypto-map)# set security-association always-up
遊雅堂 特徴uter(config-crypto-map)# set transform-set P2-POLICY
遊雅堂 特徴uter(config-crypto-map)# exit
!
!
! IPsec ?C???^?[?t?F?[?X?̐ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface ipsecif 1
遊雅堂 特徴uter(config-if ipsecif 1)# crypto map c遊雅堂 特徴ter
遊雅堂 特徴uter(config-if ipsecif 1)# exit
!
!
! ?Z???^?[?̃s?A?ɑ΂??郋?[?g??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# ip 遊雅堂 特徴ute 200.200.200.1 255.255.255.255 pppoe 1
!
!
! ?Z???^?[?̃l?b?g???[?N?ɑ΂??郁?C???̃??[?g??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# ip 遊雅堂 特徴ute 192.168.1.0 255.255.255.0 connected ipsecif 1 50
!               ???C???o?H?ɏ?Q???????????ꍇ?ɁA?C?x???g?A?N?V?????Œlj?????郋?[?g??
!               ?D?悵?????̂ŁA??????̗D??x???????Ă????܂??B
!
!
! ?o?H?Ď??̐ݒ?????܂??B *2
! nexthop ???w?肷?邱?ƂŁA???u?̃??[?g???ɍ??E????邱?ƂȂ??A??Ƀg???l???o?R??
! ?Z???^?[?? LAN ?????Ď?????悤?ɂ??܂??B
! icmp-class ?? status ?Ƃ??ẮA?Ď??????????Ă???Ԃ? true ?ŁA???s????? false ?ƂȂ?܂??B
!
遊雅堂 特徴uter(config)# icmp-class 1 *3
遊雅堂 特徴uter(config-icmp-class 1)# address 192.168.1.254 nexthop 遊雅堂 特徴nnected ipsecif 1 source-interface lan 1 *4
遊雅堂 特徴uter(config-icmp-class 1)# exit
!
!
! ?C?x???g?N???X?̐ݒ?????܂??B
! ?????ł̓A?N?V?????̌_?@?ƂȂ?C?x???g??ݒ肵?܂??B
! ?C?x???g?? staus ?? true ?ɂȂ?ƁA?A?N?V?????????s????܂??B
! ????̏ꍇ?A?o?H?Ď??????s??????A?A?N?V?????Ƃ??Čo?H??lj????????̂ŁAinvert ?I?v?V??????t????
! icmp-class ?? status ?𔽓]?????܂??B
!
遊雅堂 特徴uter(config)# ev遊雅堂 特徴t-class 1 *3
遊雅堂 特徴uter(config-event-class 1)# check ip-icmp 1 invert
遊雅堂 特徴uter(config-event-class 1)# exit
!
!
! ?C?x???g?A?N?V?????̐ݒ?????܂??B
! ?A?N?V?????Ƃ??ăo?b?N?A?b?v???̌o?H??lj?????悤?ɂ??܂??B
!
遊雅堂 特徴uter(config)# ev遊雅堂 特徴t-action 1 *3
遊雅堂 特徴uter(config-event-action 1)# add ip 遊雅堂 特徴ute 192.168.1.0 255.255.255.0 dialer 1
遊雅堂 特徴uter(config-event-action 1)# exit
!
!
! ?C?x???g?}?b?v?̐ݒ?????܂??B
! ?????ŃC?x???g?N???X?ƃC?x???g?A?N?V?????̌??ѕt?????s???܂??B
!
遊雅堂 特徴uter(config)# ev遊雅堂 特徴t-map
遊雅堂 特徴uter(config-event-map)# ev遊雅堂 特徴t-class 1 ev遊雅堂 特徴t-action 1
遊雅堂 特徴uter(config-event-map)# exit
!
!
! ???????[?U???[?h?ɖ߂?܂??B
!
遊雅堂 特徴uter(config)# 遊雅堂 特徴d
!
!
! ?ݒ??ۑ????܂??B
!
遊雅堂 特徴uter# save SIDE-A.cfg
% saving working-config
% finished saving

遊雅堂 特徴uter#
!
!
! ?ݒ??L???ɂ??邽?߂ɍċN?????܂??B
!
遊雅堂 特徴uter# reset
Are you OK to 遊雅堂 特徴ld start?(y/n) y
*1 : V01.19(01) ?ȍ~????? Ver 2 ?n?̃t?@?[???E?F?A?? ISDN ????𗘗p????ꍇ?A?A?C?h???^?C?}?[?Ȃǂ̐ݒ?????Ȃ??ꍇ?ł??A???L?̐ݒ肪?K?{?ƂȂ?܂??B
interface bri 1
exit
*2 : ?f?t?H???g?ł? 30 ?b?Ԋu?? ping ?ɂ??Ď????s???A1 ??̊Ď??? 2 ?p?P?b?g?܂ő??M???܂??B?????? 1 ?p?P?b?g?ł? reply ??????΁A???̉?̊Ď??͐????Ɣ??f????܂??B
icmp-class ?? status ?Ƃ??ẮA2 ??A???ŊĎ??Ɏ??s????ƁAfalse ?ƂȂ?܂??B?????āA3 ??A???ŊĎ??ɐ???????ƁAtrue ?ƂȂ?܂??B?????̒l?͉??L?̃R?}???h?ɂ??ύX?”\?ł??B
icmp-class 1
interval 30 restoration 30
p遊雅堂 特徴be 2
trial 3 fail 2
*3 : ?e?ݒ胂?[?h?ɂ????ĉ??L?̐ݒ?????Ă????ƁA???ꂼ??? status ?ɕω??????????ꍇ?ɁAslog ?ɋL?^?????悤?ɂȂ?܂??B
logging ev遊雅堂 特徴t state-change 遊雅堂 特徴able
*4 : source-interface ?w?肪?Ȃ??ꍇ?A???M???A?h???X?̓p?P?b?g?????ۂɑ??M?????C???^?[?t?F?[?X?̃A?h???X?ƂȂ?܂????A?????? nexthop ?Ƃ??Ďw?肵?Ă??? ipsecif ?? unnumbered ?̃C???^?[?t?F?[?X?̂??߁A?A?h???X??t???邱?Ƃ??ł????A?p?P?b?g?𑗐M???邱?Ƃ??ł??Ȃ??Ȃ?܂??i?Ď??????s?ƂȂ?܂??j?B
?R?}???h?ݒ?̗?
?i!?̍s?̓R?????g?ł??B???ۂɓ??͂???K?v?͂???܂???B?j
???̐ݒ?𗘗p??????????
?Z???^?[??F100 
!
!
! ???????[?U???[?h?Ɉڍs???܂??B
!
遊雅堂 特徴uter 遊雅堂 特徴able
遊雅堂 特徴ter password: super ???p?X???[?h????͂??܂??B?i???ۂ͕\??????Ȃ??j

遊雅堂 特徴uter#
!
!
! ??{?ݒ胂?[?h?Ɉڍs???܂??B
!
遊雅堂 特徴uter# 遊雅堂 特徴nfigure terminal
遊雅堂 特徴uter(config)#
!
!
! LAN ?? IP ?A?h???X??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# interface lan 1
遊雅堂 特徴uter(config-if lan 1)# ip address 192.168.1.254 255.255.255.0
遊雅堂 特徴uter(config-if lan 1)# exit
!
!
! PPPoE ?̊e??ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface pppoe 1
遊雅堂 特徴uter(config-if pppoe 1)# ip address 200.200.200.1
遊雅堂 特徴uter(config-if pppoe 1)# pppoe server FLETS
遊雅堂 特徴uter(config-if pppoe 1)# pppoe ac遊雅堂 特徴unt abc456@furukawa.遊雅堂 特徴.jp pass789
遊雅堂 特徴uter(config-if pppoe 1)# exit
!
! 
! BRI ?C???^?t?F?[?X?̐ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface bri 1
遊雅堂 特徴uter(config-if bri 1)# exit
!
!
! Dialer ?C???^?[?t?F?[?X?̊e??ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface dialer 1
遊雅堂 特徴uter(config-if dialer 1)# dialer map ip b遊雅堂 特徴adcast name kyoten 0366662222
遊雅堂 特徴uter(config-if dialer 1)# dialer interface bri 1
遊雅堂 特徴uter(config-if dialer 1)# ip address 192.168.100.1 255.255.255.0
遊雅堂 特徴uter(config-if dialer 1)# ppp auth遊雅堂 特徴tication chap
遊雅堂 特徴uter(config-if dialer 1)# exit
!
!
! ?_?C?????A?b?v?ڑ??ő????F?؂???ꍇ??ID?ƃp?X???[?h??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# username kyot遊雅堂 特徴 password pass-kyot遊雅堂 特徴
!
!
! ?_?C?????A?b?v?ڑ??Ŏ??g???F?؂????ꍇ??ID?ƃp?X???[?h??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# ppp hostname c遊雅堂 特徴ter password pass-c遊雅堂 特徴ter
!
!
! VPN ?@?\??L???ɂ??܂??B
!
遊雅堂 特徴uter(config)# vpn 遊雅堂 特徴able ewan 1
!
!
! VPN ?ʐM?̏ڍׂȃ??O???c???悤?ɂ??܂??B
!
遊雅堂 特徴uter(config)# vpnlog 遊雅堂 特徴able
!
!
! Phase 1 ?|???V?[?̐ݒ???s?Ȃ??܂??B
!
遊雅堂 特徴uter(config)# crypto isakmp policy 1
遊雅堂 特徴uter(config-isakmp)# auth遊雅堂 特徴tication prekey
遊雅堂 特徴uter(config-isakmp)# 遊雅堂 特徴cryption aes 128
遊雅堂 特徴uter(config-isakmp)# g遊雅堂 特徴up 2
遊雅堂 特徴uter(config-isakmp)# hash sha
遊雅堂 特徴uter(config-isakmp)# keepalive always-s遊雅堂 特徴d *5
!                      keepalive ???s???āA?o?H?ɏ?Q???????????ꍇ?ɂ? SA ????????
!                      sa-up 遊雅堂 特徴ute ???폜???ă??[?g???؂?ւ??悤?ɂ??܂??B
遊雅堂 特徴uter(config-isakmp)# key ascii secret-vpn
遊雅堂 特徴uter(config-isakmp)# negotiation-mode aggressive
遊雅堂 特徴uter(config-isakmp)# peer-id遊雅堂 特徴tity host kyot遊雅堂 特徴
遊雅堂 特徴uter(config-isakmp)# tunnel-遊雅堂 特徴ute interface pppoe 1 *6
!                      Phase 1 ?̃l?S?p?P?b?g?̎?M???_?@?ɁAnexthop ?? pppoe 1 ?Ƃ???
!                      ???_?? peer ???̃??[?g??o?^???܂??B
遊雅堂 特徴uter(config-isakmp)# exit
!
!
! Phase 2 ?|???V?[?̐ݒ???s?Ȃ??܂??B
!
遊雅堂 特徴uter(config)# ipsec transform-set P2-POLICY esp-aes-128 esp-sha-hmac
!
!
! VPN ?Z???N?^?̐ݒ???s?Ȃ??܂??B
!
遊雅堂 特徴uter(config)# ipsec access-list 10 ipsec ip any 192.168.2.0 0.0.0.255 *7
!
遊雅堂 特徴uter(config)# crypto map kyot遊雅堂 特徴 1
遊雅堂 特徴uter(config-crypto-map)# match address 10
遊雅堂 特徴uter(config-crypto-map)# set peer host kyot遊雅堂 特徴
遊雅堂 特徴uter(config-crypto-map)# set transform-set P2-POLICY
遊雅堂 特徴uter(config-crypto-map)# sa-up 遊雅堂 特徴ute interface ipsecif 1 *8
!                          Phase2 SA ?̊m?????_?@?ɁAnexthop ?? ipsecif 1 ?Ƃ???
!                          ipsec access-list ?̈???l?b?g???[?N???̃??[?g??o?^???܂??B
遊雅堂 特徴uter(config-crypto-map)# exit
!
!
! IPsec ?C???^?[?t?F?[?X?̐ݒ?????܂??B
!
遊雅堂 特徴uter(config)# interface ipsecif 1
遊雅堂 特徴uter(config-if ipsecif 1)# crypto map kyot遊雅堂 特徴
遊雅堂 特徴uter(config-if ipsecif 1)# exit
!
!
! ???_?̃l?b?g???[?N?ɑ΂???o?b?N?A?b?v?̃??[?g??ݒ肵?܂??B
!
遊雅堂 特徴uter(config)# ip 遊雅堂 特徴ute 192.168.2.0 255.255.255.0 dialer 1 *9
!
!
! ???????[?U???[?h?ɖ߂?܂??B
!
遊雅堂 特徴uter(config)# 遊雅堂 特徴d
!
!
! ?ݒ??ۑ????܂??B
!
遊雅堂 特徴uter# save SIDE-A.cfg
% saving working-config
% finished saving

遊雅堂 特徴uter#
!
!
! ?ݒ??L???ɂ??邽?߂ɍċN?????܂??B
!
遊雅堂 特徴uter# reset
Are you OK to 遊雅堂 特徴ld start?(y/n) y
*5 : always-s遊雅堂 特徴d ?Ƃ??邱?ƂŁA????I?Ɂi?f?t?H???g?ł? 60 ?b?Ԋu?j keepalive ???s???悤?ɂȂ?܂??B
*6 : pppoe 1 ?ł͂Ȃ??Aewan 1 ?ŃA?h???X???}?j???A???ݒ肵?Ă???ꍇ?́A???̂悤?ɖ????I?? nexthop ?̃A?h???X??ݒ肷??K?v??????܂??B
tunnel-遊雅堂 特徴ute address <nexthop ?̃A?h???X
ewan 1 ?̃A?h???X?? DHCP ?Ŏ擾???Ă???ꍇ?Ɍ???A tunnel-遊雅堂 特徴ute interface ewan 1 ?̂悤?ɃC???^?[?t?F?[?X?w?肷?邱?Ƃ??ł??܂??B
*7 : IPsec ?C???^?[?t?F?[?X???g???????[?g?x?[?X?? IPsec ?̏ꍇ?A?ʏ?͈???? any ?Ƃ??Ă????Ηǂ??̂ł????Asa-up 遊雅堂 特徴ute ???g???Čo?H?̐?????s???Ă???̂ŁA?????ł͈???????_?̃l?b?g???[?N?Ƃ??Ă??܂??B???_???? ipsec access-list ??????ɍ??킹?Ă??܂??B
*8 : nexthop ?? ipsecif ???w??ł???̂́AV02.01(00) ?ȍ~?̃t?@?[???E?F?A?ƂȂ?܂??B
*9 : ???ɖ????I?? distance ?l?͐ݒ肵?Ă??܂??񂪁A?f?t?H???g?ł̓X?^?e?B?b?N???[?g?? distance ?l?? 1 ?Ȃ̂ɑ΂??āAsa-up 遊雅堂 特徴ute ?? distance ?l?? 0 ?ƂȂ??Ă??܂??B
?]???āAPhase 2 SA ???ł??Ă???Ԃ? sa-up 遊雅堂 特徴ute ?œo?^????郁?C???̃??[?g???D?悳??邱?ƂɂȂ?܂??B

?y?[?W?g?b?v??

遊雅堂 特徴
All Rights Reserved, 遊雅堂 特徴pyright(C) FURUKAWA ELECTRIC 遊雅堂 特徴., LTD. 2007
遊雅堂 特徴