ðÒÉ×ÅÔ ×ÓÅÍ!
ÅÓÔØ ×ÏÔ ÔÁËÉÅ ÎÁÓÔÒÏÊÉ ÃÉÓËÉ (×ÚÑÔÏ ×ÏÔ ÏÔ ÓÀÄÁ http://noc.caravan.ru/faq/fbsd-cisco-ipsec.html)
-----------------------------------------------------------
###################
# CISCO #
###################
!
crypto isakmp policy 1
hash md5
authentication pre-share
lifetime 3600
crypto isakmp key PreSharedKey address A.B.C.D
!
!
crypto ipsec transform-set CryptoTSet esp-des esp-md5-hmac
mode transport
!
crypto map CryptoMap 1 ipsec-isakmp
set peer A.B.C.D
set transform-set CryptoTSet
set pfs group1
match address 136
!
interface Tunnel1
ip unnumbered FastEthernetN/X{.Y}
tunnel source a.b.c.d
tunnel destination A.B.C.D
tunnel mode ipip
!
interface FastEthernetN/X.{Y}
{encapsulation dot1Q Y}
ip address a.b.c.d
crypto map CryptoMap
!
!
access-list 136 permit ip host a.b.c.d host A.B.C.D
!
ip route 192.168.1.0 255.255.255.0 Tunnel1
!
-----------------------------------------------------------Tunnel1 ÐÏÄÎÑÔ ÄÏ ÓÅÒ×ÅÒÁ FreeBSD ×ÓÅ ÈÏÒÏÛÏ ÒÁÂÏÔÁÅÔ, ÛÉÆÒÕÅÔÓÑ
ðÏÄÎÉÍÁÀ Tunnel2 ÄÏ ÄÒÕÇÏÇÏ ÓÅÒ×ÅÒÁ
interface Tunnel2
ip unnumbered FastEthernetN/X{.Y}
tunnel source a.b.c.d
tunnel destination Z.X.Y.C
tunnel mode ipip
ôÕÎÎÅÌØ ÒÁÂÏÔÁÅÔ, ×ÏÐÒÏÓ, ËÁË ÜÔÏÔ ÔÕÎÎÅÌØ ÚÁÛÉÆÒÏ×ÁÔØ? ñ × ÃÉÓËÁÈ ÓÏ×ÓÅÍ ÄÕÂ, Ä×Á ÄÎÑ ÂØÀÓØ ÎÁÄ ÜÔÏÊ ÐÒÏÂÌÅÍÏÊ, ÔÁË ÎÉÞÅÇÏ É ÎÅ ×ÙÛÌÏ...
÷ÁÒÉÁÎÔ ÄÌÑ ÒÁÓÐÅÞÁÔËÉ
íÁÒÛÒÕÔÉÚÁÔÏÒÙ CISCO É ÄÒ. ÏÂÏÒÕÄÏ×ÁÎÉÅ. (Public)
(??) on 19-îÏÑ-07, 19:13 
