RS ACCESS GUIDE. Cisco Expert-Level Training (Formerly Cisco 360) for CCIE Routing and Switching. Lab Front End Remote Access Guide



Similar documents
Remote PC Guide for Standalone PC Implementation

SSL VPN Service. Once you have installed the AnyConnect Secure Mobility Client, this document is available by clicking on the Help icon on the client.

Lab 4.4.8a Configure a Cisco GRE over IPSec Tunnel using SDM

Chapter 10 Troubleshooting

Chapter 8 Lab B: Configuring a Remote Access VPN Server and Client

CCNA Discovery Networking for Homes and Small Businesses Student Packet Tracer Lab Manual

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

WestermoConnect User Guide. VPNeFree Service

Campus VPN. Version 1.0 September 22, 2008

Configuring Devices for Use with Cisco Configuration Professional (CCP) 2.5

Initial Access and Basic IPv4 Internet Configuration

Networking Guide Redwood Manager 3.0 August 2013

Easy Setup Guide for the Sony Network Camera

MITA End-User VPN Troubleshooting Guide

Configuring the PIX Firewall with PDM

MultiSite Manager. Setup Guide

Lab Configure Cisco IOS Firewall CBAC

Network Connect Installation and Usage Guide

Citrix Access on SonicWALL SSL VPN

Lab Creating a Logical Network Diagram

Clientless SSL VPN Users

Using Remote Desktop with the Cisco AnyConnect VPN Client in Windows Vista

Sophos UTM. Remote Access via PPTP Configuring Remote Client

SSL VPN Support Guide

MultiSite Manager. Setup Guide

Lab Configuring Access Policies and DMZ Settings

Aventail Connect Client with Smart Tunneling

The SSL device also supports the 64-bit Internet Explorer with new ActiveX loaders for Assessment, Abolishment, and the Access Client.

For more information refer: UTM - FAQ: What are the basics of SSLVPN setup on Gen5 UTM appliances running SonicOS Enhanced 5.2?

Using ipass Secure Anywhere. Secure Remote Access for Hallmark Independent Retailers

Quick Connect. Overview. Client Instructions. LabTech

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

NMS300 Network Management System

Sharp Remote Device Manager (SRDM) Server Software Setup Guide

How to Remotely Access Hikvision Devices User Manual

Cisco Configuration Professional Quick Start Guide

User Guide. Cloud Gateway Software Device

Cisco AnyConnect Client Installation Guide

VPN Web Portal Usage Guide

USER GUIDE. Ethernet Configuration Guide (Lantronix) P/N: Rev 6

ZyWALL SSL 10. User s Guide. Integrated SSL-VPN Appliance. Version /2008 Edition 1

This document is intended to make you familiar with the ServersCheck Monitoring Appliance

Virtual Appliance Setup Guide

Intel Active Management Technology with System Defense Feature Quick Start Guide

ASA 8.x: VPN Access with the AnyConnect VPN Client Using Self Signed Certificate Configuration Example

AnyConnect VPN Client FAQ

How To Industrial Networking

Windows and MAC User Handbook Remote and Secure Connection Version /19/2013. User Handbook

50-Port 10/100/1000Mbps with 4 Shared SFP. Managed Gigabit Switch WGSW Quick Installation Guide

Virtual Data Centre. User Guide

Guideline for setting up a functional VPN

Lab - Using Wireshark to View Network Traffic

DOE VPN Client Installation and Setup Guide March 2011

Deployment Guide: Transparent Mode

Accessing the Media General SSL VPN

Dell SonicWALL SRA 7.5 Citrix Access

Installation Guide. Research Computing Team V1.9 RESTRICTED

Creating a Gateway to Client VPN between Sidewinder G2 and a Mac OS X Client

VPN: Virtual Private Network Setup Instructions

ATTENTION: End users should take note that Main Line Health has not verified within a Citrix

Configuring SSL VPN on the Cisco ISA500 Security Appliance

Jive Connects for Openfire

SonicWALL SSL VPN 3.5: Virtual Assist

FlexSim LAN License Server

Citrix Access Gateway Enterprise Edition Citrix Access Gateway Plugin for Java User Guide. Citrix Access Gateway 8.1, Enterprise Edition

1 Download & Installation Usernames and... Passwords

SSL VPN Server Guide Access Manager 3.1 SP5 January 2013

Configuring Check Point VPN-1/FireWall-1 and SecuRemote Client with Avaya IP Softphone via NAT - Issue 1.0

Lab assignment #2 IPSec and VPN Tunnels (Document version 1.1)

ADSL Router Quick Installation Guide Revised, edited and illustrated by Neo

Symantec Database Security and Audit 3100 Series Appliance. Getting Started Guide

NAC Guest. Lab Exercises

Quick Start Guide. Sendio System Protection Appliance. Sendio 5.0

Installation Notes for Outpost Network Security (ONS) version 3.2

ASUS WL-5XX Series Wireless Router Internet Configuration. User s Guide

Remote Desktop Instructions for the Remote PC Running Windows Vista

Steltronic Focus. Main Desk Internet connection

vcloud Director User's Guide

Sophos UTM. Remote Access via SSL Configuring Remote Client

Sophos UTM. Remote Access via PPTP. Configuring UTM and Client

Chapter 7 Troubleshooting

Lab Configuring Access Policies and DMZ Settings

Cisco AnyConnect Secure Mobility Solution Guide

IBM Remote Lab Platform Citrix Setup Guide

Deploying Secure Internet Connectivity

TP-LINK TD-W8901G. Wireless Modem Router. Advanced Troubleshooting Guide

Application Note Startup Tool - Getting Started Guide

Network/Floating License Installation Instructions

Managed Devices - Web Browser/HiView

SonicWALL SSL-VPN 2.5: NetExtender

BiPAC 7404V series. VoIP/(802.11g) ADSL2+ (VPN) Firewall Router. Quick Start Guide

Fiery E100 Color Server. Welcome

SSL-VPN 200 Getting Started Guide

Lab Configure Intrusion Prevention on the PIX Security Appliance

Requirements on terminals and network Telia Secure Remote User, TSRU (version 7.1 R4)

XStream Remote Control: Configuring DCOM Connectivity

Stealth OpenVPN and SSH Tunneling Over HTTPS

Net Inspector 2015 GETTING STARTED GUIDE. MG-SOFT Corporation. Document published on October 16, (Document Version: 10.6)

User Manual. User Manual for Version

ABB solar inverters. User s manual ABB Remote monitoring portal

Transcription:

RS ACCESS GUIDE Cisco Expert-Level Training (Formerly Cisco 360) for CCIE Routing and Switching Lab Front End Remote Access Guide

Table of Contents Cisco Expert-Level Training (Formerly Cisco 360) for CCIE Routing and Switching... 1 Lab Front End Remote Access Guide... 1 Table of Contents... 2 Establishing a VPN Connection... 3 Method 1: Cisco AnyConnect VPN Client setup... 3 Method 2: Cisco IPSec VPN Client setup... 6 VPN Troubleshooting FAQ... 7 GUI Front End Lab Access... 9 Recommended PC Software and desktop setup... 9 Authentication Screen... 9 Lab Navigation... 10 Router-Telnet Association... 12 Incidents Panel... 13 Firefox configuration to prevent opening an empty tab... 15 POD Management... 16 Ability to Extend, to End the Lab Early and to Save Configurations... 16 2 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

Establishing a VPN Connection The Cisco Expert-Level Training (formerly Cisco 360) Routing and Switching virtual pods are accessible using a VPN client. You may use any VPN client supported by Cisco routers. Instructions below provide two methods for setting up secured VPN connection. One method provides overview of automated installation of Cisco AnyConnect VPN client. Another method uses manual installation of standalone Cisco IPSec VPN Client software package. Your registration email includes the access instructions for your reservation. This information should look similar to: VPN Router IP Address VPN Group Name VPN Group Password VPN Username VPN Password 128.107.247.252 or https://cisco360-labs.cisco.com CIERSV5 cisco360 RS-POD# FOR EXAMPLE ONLY The same lab access information is visible in the portal under RSv5 -> Workbook, Assessment Labs or Lessons pages shortly after you have scheduled the lab. Method 1: Cisco AnyConnect VPN Client setup The AnyConnect client supports Windows Vista, Windows XP and Windows 2000, Mac OS X (Version 10.4 or later) on either Intel or PowerPC, and Red Hat Linux (Version 9 or later). To connect to the pod, navigate your browser to the VPN Router IP address: http://128.107.247.252/ You can get Untrusted Connection or Security certificate problems warning message. Accept the warning and safely continue to the website. For the Firefox browser, Add and confirm security exception. 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 3

Once the browser connects to the VPN web interface the logon screen will display. Enter VPN Username and VPN Password in the provided fields and click on Logon button. If credentials are accepted, and the security appliance identifies your workstation as requiring the client, it loads the client that matches the operating system of your PC. In order to properly download and install the plug-in, be sure to click Yes on the Java security pop-up message: 4 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

Answer Yes on another Certificated Issuer related Security Alert message: After loading, the client installs and configures itself, establishing a secured SSL VPN connection. 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 5

Method 2: Cisco IPSec VPN Client setup The Cisco IPSec VPN client supports the majority of production versions of Windows and Mac OS X. Download Cisco VPN client version for your operating system from your Learning portal (System: Profile->Downloads). Install the package and reload the workstation. To connect to the pod, create a new VPN client entry: Initiate the VPN connection by double-clicking on the CIERSV5 connection entry and authenticate the VPN tunnel with provided credentials: Verify the VPN tunnel communication by pinging IP address 10.10.N.100, where N is the number of the server from the HTML file attachment in the lab instructions email: C:\Users\test>ipconfig Ethernet adapter Cisco VPN: Connection-specific DNS Suffix. : IPv4 Address........... : 10.10.1.101 Subnet Mask........... : 255.255.224.0 Default Gateway......... : C:\Users\test>ping 10.10.1.10 Pinging 10.10.1.10 with 32 bytes of data: Reply from 10.10.1.10: bytes=32 time=99ms TTL=64 Reply from 10.10.1.10: bytes=32 time=87ms TTL=64 C:\Users\test>ping 10.10.1.100 Pinging 10.10.1.100 with 32 bytes of data: Reply from 10.10.1.100: bytes=32 time=92ms TTL=64 Reply from 10.10.1.100: bytes=32 time=89ms TTL=64 6 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

VPN Troubleshooting FAQ What level of rights is required for the AnyConnect VPN Client? For the first installation, you need administrative privileges. However, subsequent upgrades do not require the admin level privilege. Is a reboot required after AnyConnect is installed or upgraded? No. Unlike the IPSec VPN Client, a reboot is not required after an AnyConnect installation or upgrade. Does AnyConnect require Java and permissions? The AnyConnect VPN Client requires either ActiveX or Java to use the web-based connection/install. For ActiveX, the user needs to have permission to install into their web browser (or it can be preinstalled). If ActiveX is not supported or used, Java is attempted. The version can be 1.4.x or 1.5. The Java implementation is an applet and is browser-based: http://java.com. On the first connection, the ActiveX/Java is used to install the AnyConnect VPN Client software. This initial connection requires admin rights. Subsequent connections do not require admin rights (even for client upgrades). What is Cisco official AnyConnect VPN Client FAQ page? http://www.cisco.com/en/us/products/ps8411/products_qanda_item09186a00809aec31.shtml I do not have IPSec VPN client software. Where can I download a VPN client supported by Cisco routers? Cisco VPN client can be downloaded from Cisco 360 Learning portal (System: Profile->Downloads). 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 7

I see the VPN Authentication screen, but my credentials are rejected. Why can I not login? If you see the authentication screen, it means your PC is able to communicate with the Pod. User credentials are activated 6-8 minutes prior to the scheduled lab time. If you are trying to login during scheduled lab session and your credentials are rejected, please review the scheduling email or check the portal under RSv5 -> Workbook, Assessment Labs or Lessons pages to verify you are accessing the correct pod and are using the correct credentials. Username and Password values are case-sensitive. When trying to establish the IPSec VPN session, I receive this error message: Why can I not connect using IPSec VPN client? This message indicates that your PC is not able to communicate with the Pod. The most common cause of this issue is a firewall or ACL that is blocking IPSec from your network. Authentication Headers (AH) and Encapsulating Security Payloads (ESP) protocols along with UDP 500 and UDP 4500 ports must be open for outbound traffic. Verify that your network security policy allows VPN sessions through firewall to the outside world. After you have verified that you are able to establish outbound VPN sessions, please reboot your PC. If you continue to have issues, please send an email to 360-ciers-laboperations@external.cisco.com. Please include the RS-POD# you were assigned and the start time for your scheduled lab. Also include screen captures showing your VPN configuration. 8 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

GUI Front End Lab Access Recommended PC Software and desktop setup It is your responsibility to create an environment for GUI Front End. Cisco Expert-Level Training support team does not provide technical support for it. If you have difficulties with graphical front end interface, please use the lab PDF document and telnet access instructions provided in the e-mail to connect to equipment. Links to the recommended software are located in your Learning portal (System: Profile->Downloads) Note Install Adobe Flash Player from Mozilla Firefox browser. It will automatically detect the right version. Authentication Screen Navigate to http://10.10.1.10/ webpage, where N is the number of the server from the HTML file attachment in the lab instructions email. Use Session Authentication dialog to log into the lab delivery portal. 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 9

Enter POD name and Password as per access instructions (same as VPN username and VPN password). Lab Navigation Only the main diagram Lab IP Addressing and IGP Topology provides clickable router-telnet associations. The dashboard will be loaded and present the navigation bar on the left and workspace with the lab diagram on the right. The top line of the dashboard has the information about the candidate, the lab and the time left until the end of session. The navigation bar consists of three sections: 1) enumerated incidents, 2) lab objectives, instructions and rules, 3) lab diagrams. 10 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

Note Note Note All question and diagram windows are moveable, resizable and could be minimized and closed. Main network diagram could not be closed. To move the window - drag it by the title. If the full diagram does not fit in the provided window, it can be dragged by mouse. With the left mouse button down, use gesture action to shift the document naturally in any direction. If the size of the window with network diagram is smaller than provided browser window, it can be resized by mouse. Click on the bottom-right corner of the diagram window and move the mouse. Interactive Help in different places gives you the tips to enhance your learning experience and helps navigate the page. 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 11

Router-Telnet Association Hover the mouse cursor over the device on the main diagram. The context help will indicate telnet IP address and port. Configure Firefox browser to start telnet application when telnet:// URL is called. Make association with your preferred telnet client (PuTTY). Note Do not associate telnet application with Windows Command Prompt utility. Its terminal emulation incorrectly handles some of the router special commands (like, ---More---) which results in partial show command output. Issue terminal length 0 command in the router enable mode to force full show command output on the console without breaks. 12 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

When Firefox is configured to launch telnet application on telnet:// URLs, clicking on the router will automatically open telnet session to it. Telnet session can also be opened from the right click menu for each router (see POD Management section). Incidents Panel Select an incident and click on Incident details to see full description of the question. A full description of the incident will open in a separate window on the workspace. Question can be marked to keep track of completed issues. Marking will not close the question and is just for information. It will not trigger any process. Question can be unmarked at any moment as needed. The diagram for each incident highlights the area of the troubleshooting interest to help identify the area of the problem. 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 13

Pay particular attention to Restriction and Goals section of the lab. The list of restrictions creates a certain environment that guides toward problem solving solution. The lab diagrams are located under last section of the menu. Click on the diagram details to open diagram in a separate window. 14 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

Firefox configuration to prevent opening an empty tab Default configuration of the Firefox browser has such behavior that when telnet session is initiated from the diagram by mouse click, new empty tab is created in the browser window. To prevent opening an empty tab, change the default setting of your Firefox browser using the following procedure: 1. Open Firefox browser. 2. Type about:config in the web site address area and press Enter. 3. Ignore the message about the warranty by pressing I ll be careful, I promise. 4. Find browser.link.open_newwindow and change a value to 1 (use Modify option). 5. The change should take effect immediately. 2015 Cisco Systems, Inc. Cisco Expert-Level Training - Front End Remote Access Guide 15

POD Management Click POD Management button to show all devices of the lab and its status. Administrative management of each device also can be shown by hovering over router on the main diagram and clicking right-button of the mouse: The provided menu allows to Telnet to device, Clear line, Power Cycle and Reinitialize device. Note Exercise caution when operating with power control functions. Not saved configuration might be lost! Clear Line process clears telnet all session to specific device. Power cycle process is designed to restore access to the system lost due to excessive debugging output or lack of any console output on the router. Not saved configuration will be lost! Reinitialize process restores device configuration to its initial configuration state designed by a lab author. Any additional configuration will be lost! Ability to Extend, to End the Lab Early and to Save Configurations Please refer to the Roadmap and FAQ page for additional description of lab functionality. Depending on the lab, you can extend the duration, end the lab early and use saved configurations options during scheduling. 16 Cisco Expert-Level Training - Front End Remote Access Guide 2015 Cisco Systems, Inc.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information