1
00:00:00,980 --> 00:00:06,200
Hello and welcome to this lecture in this lecture we continue with the branch for the great firewall

2
00:00:06,200 --> 00:00:07,660
configuration.

3
00:00:07,670 --> 00:00:16,270
So now let's dig in and say a console I will again increase the funds or change settings and appearance

4
00:00:16,480 --> 00:00:25,230
to let's say 18 and apply just minimize a little bit and let's just start the configuration.

5
00:00:25,560 --> 00:00:32,420
So again add mean no password and let's start with port one.

6
00:00:33,090 --> 00:00:44,850
So configure system interface and let's say edit port 1 let's send the IP address or set IP.

7
00:00:44,940 --> 00:00:59,250
And this is 90 dot 90 dot 90 that 90 and slash 30 again set mode of static and then apply the IP address.

8
00:00:59,250 --> 00:01:02,320
Now let's move on to actually.

9
00:01:02,370 --> 00:01:04,430
Yeah let's move on to the second one.

10
00:01:04,610 --> 00:01:14,110
So set next edit port 2 and port 2.

11
00:01:14,120 --> 00:01:24,220
It's the land port just have it a little bit like this so we can also see the diagram.

12
00:01:24,780 --> 00:01:31,400
So again said IP and this time is one end to that one say that to that one.

13
00:01:31,410 --> 00:01:33,000
And this is a slash 24.

14
00:01:33,560 --> 00:01:42,330
We will also said allow access to ping this in this way we will be able to ping the the branch for the

15
00:01:42,330 --> 00:01:45,870
gate firewall from the test BCE from our land user.

16
00:01:46,560 --> 00:01:48,580
So set allow access pink.

17
00:01:48,630 --> 00:01:59,130
Now we will also say next and edit port number three our management port let's say set IP 172 the sixteen

18
00:01:59,170 --> 00:02:01,800
not two hundred one.

19
00:02:02,010 --> 00:02:11,120
And this is a slash 24 said allow access to HDTV and HDTV is good.

20
00:02:11,130 --> 00:02:18,660
Now let's say and we will also have to add static route from I mean on the firewall pointing to the

21
00:02:18,660 --> 00:02:28,350
Internet router and we will do this by doing this configure rather and static.

22
00:02:28,350 --> 00:02:35,130
And if you hit the question mark you have the option to say edit and again question mark sequence number.

23
00:02:35,220 --> 00:02:40,070
So let's say again sequence number one and let's say.

24
00:02:40,080 --> 00:02:48,990
Question mark okay said and again device and destination so set destination.

25
00:02:49,020 --> 00:02:50,250
This is anything.

26
00:02:50,340 --> 00:02:54,850
So default route also set device.

27
00:02:54,870 --> 00:03:04,830
So what is the interface that the traffic will will go out said device and we will say Port 1 and said

28
00:03:04,890 --> 00:03:14,070
Gateway although it doesn't have an asterisk asterisks it says said Gateway nineteen ninety ninety that

29
00:03:14,160 --> 00:03:16,570
eighty nine so alone.

30
00:03:16,590 --> 00:03:21,830
Now let's say end and this shouldn't be it.

31
00:03:21,860 --> 00:03:22,340
When.

32
00:03:22,470 --> 00:03:29,040
When we will configure also the Internet rather we will do some ICMP testing just to make sure before

33
00:03:29,040 --> 00:03:36,410
starting the IP sic IP VPN site to site configuration that we have basic IP connectivity in place.

34
00:03:36,420 --> 00:03:43,320
This is a must must know and must do to say so in any network implementation.

35
00:03:43,320 --> 00:03:50,250
So first verify simple things like ICMP connectivity between your or your firewalls or your network

36
00:03:50,250 --> 00:03:56,310
devices and then go to the more advanced configuration because otherwise you may end up in a situation

37
00:03:56,310 --> 00:04:03,570
where your setup is not working and you have configured a bunch of things doing a couple of hours of

38
00:04:03,570 --> 00:04:07,470
configuration and you will say that okay I don't know where to start.

39
00:04:07,470 --> 00:04:14,980
So what should be wrong is it is my site to site VPN configuration wrong or is it something else.

40
00:04:15,000 --> 00:04:22,010
So doing that configuration and verifying step by step as you progress through your through your setup

41
00:04:22,360 --> 00:04:26,390
it's it's a best practice and I highly advise you to do so.

42
00:04:26,400 --> 00:04:32,920
So this concludes this lecture configuration on the branch for the Great Firewall its is done so see

43
00:04:32,920 --> 00:04:35,940
you in the next lecture to continue our setup.

44
00:04:35,940 --> 00:04:36,460
Thanks again.