Step 2: Configure the Ethernet interface with trusted network type:
Step 3: Display the crypto interfaces:
Step 4: Add the route to the peer LAN:Step 5: Configure IKE to the peer gateway:
Router1/configure# interface ethernet 0
Configuring existing Ethernet interface
Router1/configure interface/ethernet 0# ip address 10.0.1.1 24
Router1/configure/interface/ethernet 0# crypto trusted
Router1/configure/interface/ethernet 0# exit
Router1# show crypto interfaces
Interface Network
Name Type
--------- -------
ethernet0 trusted
wan1 untrusted
Router1/configure# ip route 10.0.2.0 24 wan1
Router1/configure# crypto
Router1/configure/crypto# ike policy Router2 172.16.0.2
Router1/configure/crypto/ike/policy Router2 172.16.0.2# local-
address 172.16.0.1
message: Default proposal created with priority1-des-sha1-
pre_shared-g1
message: Key String has to be configured by the user
Router1/configure/crypto/ike/policy Router2 172.16.0.2# key
secretkey
Router1/configure/crypto/ike/policy Router2 172.16.0.2# proposal 1
Router1/configure/crypto/ike/policy Router2 172.16.0.2/proposal 1#
encryption-al
algorithm 3des-cbc
Router1/configure/crypto/ike/policy Router2 172.16.0.2/proposal 1#
exit
Router1/configure/crypto/ike/policy Router2 172.16.0.2# exit