Welcome to the Configure Verify and Troubleshoot GRE Tunnel Connectivity Practice Lab. In this module you will be provided with the instructions and devices needed to develop your hands-on skills.

Exam Objectives

The following exam objectives are covered in this lab:

  • CAS-003 2.1 Analyze a scenario and integrate network and security components, concepts and architectures to meet security requirement.
  • CAS-003 2.2 Analyze a scenario to integrate security controls for host devices to meet security requirements.
  • CAS-003 3.1 Given a scenario, conduct a security assessment using the appropriate methods.
  • CAS-003 4.1 Given a scenario, integrate hosts, storage, networks and applications into a secure enterprise architecture.

Lab Duration

It will take approximately 1 hour to complete this lab.

Exercise 1 - Configure Static and Dynamic Port Security

GRE tunnels don’t just have to run across the Internet; you can use them to join networks that couldn’t normally occur, perhaps enabling dynamic routing across a firewall for example. GRE tunnels can solve a few headaches in the real world so understanding them is very important.

One important point to note about GRE tunnels is that they do not inherently encrypt data. Everything that is sent across the tunnel is simply wrapped in GRE ‘packets’, if you like. You will solve this issue in the next exercise by encrypting the data that is passed over the tunnel. This is especially important when creating a GRE tunnel over insecure networks such as the Internet.

In this exercise, you will create a GRE tunnel between NYEDGE2 and NYWAN1. NYEDGE1 will the router that joins the two environments together, simulating the Internet.

Comprehensive Learning

