You are here
SEC0397 - Firepower 7.0 Site-to-Site VPN with Certificate (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video shows you how to configure a Site-to-Site VPN using certificate authentication on Cisco Firepower 7.0. This will be done in a Hub-and-Spoke topology between three sites. We will then explore two important aspects of Site-to-Site IPSec VPN which Reverse Route Injection and packet fragmentation.
Part 2 of this video covers packet fragmentation
Topic:
-
Site-to-Site VPN
- Hub-and-Spoke
- IKEv2 Policy
- IKEv2 IPSec
- Certificate Authentication
- Dynamic Reverse Route Injection (RRI)
- Fragmentation
- Do-not Fragment Bit
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.