Last Updated on February 10, 2019 by InfraExam
4.3.3.3 Packet Tracer – Configuring VPN Transport Mode Answers
Packet Tracer – Configuring VPN Transport Mode (Answers Version)
Answers Note: Red font color or gray highlights indicate text that appears in the Answers copy only.
Addressing Table
Device | Private IP Address | Public IP Address | Subnet Mask | Site |
Private_FTP server | 10.44.2.254 | N/A | 255.255.255.0 | Gotham Healthcare Branch |
Public_FTP server | 10.44.2.253 | 209.165.201.20 | 255.255.255.0 | Gotham Healthcare Branch |
Branch_Router | N/A | 209.165.201.19 | 255.255.255.248 | Gotham Healthcare Branch |
Phil’s computer | 10.44.0.2 | N/A | 255.255.255.0 | Metropolis Bank HQ |
Objectives
Part 1: Sending Unencrypted FTP Traffic
Part 2: Configuring the VPN Client within Metropolis
Part 3: Sending Encrypted FTP Traffic
Background
In this activity, you will observe the transfer of unencrypted FTP traffic between a client and a remote site. You will then configure a VPN client to connect to the Gotham Healthcare Branch site and send encrypted FTP traffic. The IP addressing, network configuration, and service configurations are already complete. You will use a client device within Metropolis Bank HQ to transfer unencrypted and encrypted FTP data.
Part 1: Sending Unencrypted FTP Traffic
Step 1: Access the Cyber Criminals Sniffer.
- Click the Cyber Criminals Sniffer and click the GUI tab.
- Click the Clear button to remove any possible traffic entries viewed by the sniffer.
- Minimize the Cyber Criminals Sniffer.
Step 2: Connect to the Public_FTP server using an insecure FTP connection.
- Click the Metropolis Bank HQ site and click Phil’s laptop.
- Click the Desktop tab and click on Command Prompt.
- Use the ipconfig command to view the current IP address of Phil’s computer.
- Connect to the Public_FTP server at Gotham Healthcare Branch by entering ftp 209.165.201.20 in the command prompt.
- Enter the username of cisco and password of publickey to login to the Public_FTP server.
- Use the put command to upload the file PublicInfo.txt file to the Public_FTP server.
Step 3: View the traffic on the Cyber Criminals Sniffer.
- Maximize the Cyber Criminals Sniffer that was previously minimized.
- Click the FTP messages displayed on the sniffer and scroll to the bottom of each one.
What information is displayed in clear text?____________________________________________________________________________________
USER cisco PASS publickey and the filename of PublicInfo.txt - Type quit to exit Public_FTP server.
Part 2: Configuring the VPN Client on Phil’s Computer
- From Phil’s computer, use the ping command and target the IP address of the Branch_Router. The first few pings may timeout. Enter the ping to get four successful pings.
- On the Desktop tab, click on VPN
- Within the VPN Configuration window, enter the following settings:
GroupName:…………….. VPNGROUP
Group Key:……………….. 123
Host IP (Server IP):……. 209.165.201.19
Username:………………… phil
Password:…………………. cisco123 - Click Connect and Click OK on the next window.
What is the Client IP for the client-to-site VPN connection?____________________________________________________________________________________
10.44.2.200 (this may vary between 10.44.2.200 to 10.44.2.230)
Part 3: Sending Encrypted FTP Traffic
Step 1: View the current IP addressing on Phil’s computer.
- Within the Metropolis Bank HQ site, click Phil’s computer.
- Click the Desktop tab and click on Command Prompt.
- Use the ipconfig command to view the current IP address of Phil’s PC.
What extra IP address is now shown that was not shown before in Part 1 Step 2c?____________________________________________________________________________________
Tunnel Interface IP Address: 10.44.2.200 (this may vary between 10.44.2.200 to 10.44.2.230)
Step 2: Send encrypted FTP traffic from Phil’s computer to the Private_FTP server.
- Connect to the Private_FTP server at Gotham Healthcare Branch by entering ftp 10.44.2.254 in the command prompt.
- Enter the username of cisco and password of secretkey to login to the Private_FTP server.
- Upload the file PrivateInfo.txt file to the Private_FTP server.
Step 3: View the traffic on the Cyber Criminals Sniffer
- Maximize the Cyber Criminals Sniffer that was previously minimized.
- Click the FTP messages displayed on the sniffer.
Are there any FTP messages displaying the password of internal or the file upload of PrivateInfo.txt? Explain.
____________________________________________________________________________________
No, the client-to-site VPN is using encryption and the Cyber Criminals Sniffer cannot decrypt the traffic to view it.
Suggested Scoring Rubric
Activity Section | Question Location | Possible Points | Earned Points |
Part 1: Sending Unencrypted FTP Traffic | Step 3 | 20 | |
Part 2: Configure the VPN Client on Phil’s Computer | Step 1 | 10 | |
Part 3: Send Encrypted FTP Traffic | Step 1 | 10 | |
Step 3 | 20 | ||
Questions | 60 | ||
Packet Tracer Score | 40 | ||
Total Score | 100 |