![]() We create a “VMware workstation” virtual machine for “ACS 5.x” installation. Now inside of “VMware Workstation Network Editor” we set up a “VMnet1” virtual adapter to be bridged to the “ACS Microsoft Loopback Adapter”: On the Windows server side we will have the IP address 3.3.3.1/30 and the interface on the NB2 connecting to the AAA server will have the IP address 3.3.3.2/30: The “NBtoACS” adapter will be used to connect the GNS3 world to VMware world, so that the NB2 router can talk to the AAA server, or any other router can talk to the AAA server through NB2. It will have the IP address 1.1.1.1/30 and the “ACS 5.x” will have the IP address 1.1.1.2/30 assigned through the VMware VMnet virtual adapter: The “ACS” adapter will be used for communicating between our Windows server and “ACS 5.x” for administration purposes. Then we rename them, because we could have many of these, so we can tell them apart: This “Windows 2008 R2” sure can be physical and running on my laptop, but in my case it is virtual and running somewhere in my datacenter.įirst we add a “Microsoft Loopback Adapter” and reboot our Windows server. Let’s suppose that we have “GNS3” and “VMware Workstation” installed on our “Windows 2008 R2”. We will then try to test the authentication from this router, although with a proper routing, any device from the topology could follow the same pattern. Now we will focus on connecting NB2 router to a central AAA server for Authentication/Authorization/Accounting purposes. ![]() Man I love this concept of being virtual inside of virtual □ The funniest thing is this: I’m running this on a “Windows 2008 R2” virtual machine that is running on a “VMware ESXi 5.x” hypervisor, and my AAA server is yet another virtual machine running inside “VMware Workstation” that is installed on “Windows 2008 R2”. We could insert here Cisco ASA, Cisco IPS and even Juniper products. This illustrate how complex our topology can be. I could do a simple topology, but I picked this one for a purpose: this is my actual MPLS lab and can be considered a real world scenario. This something is Widows CA, AAA server, Linux syslog server, Windows Active Directory, … Today we will connect a Cisco network done via GNS3 and an (also) Cisco ACS 5.x for AAA purposes. In this blog we will see how to connect two worlds: VMware and Cisco. Not to mention that we can practice technologies without having or renting expensive equipment. We go on a business trip and not only we present something with the Power point, but we also demonstrate the solution. One of the most fascinating things now days for us network/security/virtualization guys is possibility to carry our labs with us.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |