Branch2RT

1. version 12.4
2. service timestamps debug datetime msec
3. service timestamps log datetime msec
4. no service password-encryption
5. !
6. hostname BranchRT2
7. !
8. boot-start-marker
9. boot-end-marker
10. !
11. !
12. no aaa new-model
13. memory-size iomem 5
14. ip cef
15. !
16. !
17. !
18. !
19. no ip domain lookup
20. ip domain name lab.local
21. !
22. multilink bundle-name authenticated
23. !
24. !
25. !
26. !
27. !
28. !
29. !
30. !
31. !
32. !
33. !
34. !
35. !
36. !
37. !
38. !
39. !
40. !
41. !
42. !
43. !
44. archive
45. log config
46. hidekeys
47. !
48. !
49. crypto isakmp policy 10
50. encr aes
51. authentication pre-share
52. group 5
53. crypto isakmp key testkey address 87.55.45.1 255.255.255.248
54. crypto isakmp key testkey address 87.55.44.1 255.255.255.248
55. !
56. !
57. crypto ipsec transform-set AES128-SHA esp-aes esp-sha-hmac
58. !
59. crypto ipsec profile IPSECPROFILE10
60. set transform-set AES128-SHA
61. !
62. !
63. !
64. !
65. !
66. class-map type inspect match-any OUTSIDE-INSIDE-CLASS
67. match access-group 110
68. match protocol http
69. match protocol https
70. match protocol smtp
71. class-map type inspect match-any INSIDE-OUTSIDE-CLASS
72. match protocol smtp
73. match protocol https
74. match protocol http
75. match protocol dns
76. !
77. !
78. policy-map type inspect OUTSIDE-INSIDE-POLICY
79. class type inspect OUTSIDE-INSIDE-CLASS
80. pass
81. class class-default
82. policy-map type inspect INSIDE-OUTSIDE-POLICY
83. class type inspect INSIDE-OUTSIDE-CLASS
84. pass
85. class class-default
86. !
87. zone security OUTSIDE
88. zone security INSIDE
89. zone-pair security OUTSIDE-INSIDE-PAIR source OUTSIDE destination INSIDE
90. zone-pair security INSIDE-OUTSIDE-PAIR source INSIDE destination OUTSIDE
91. !
92. !
93. !
94. !
95. interface Tunnel1
96. ip address 10.10.10.3 255.255.255.0
97. no ip redirects
98. ip nhrp authentication nhrp1
99. ip nhrp map multicast 87.55.45.1
100. ip nhrp map 10.10.10.1 87.55.45.1
101. ip nhrp network-id 1
102. ip nhrp nhs 10.10.10.1
103. zone-member security INSIDE
104. ip ospf network broadcast
105. ip ospf cost 10
106. ip ospf priority 0
107. ip ospf 1 area 0
108. tunnel source FastEthernet0/0
109. tunnel mode gre multipoint
110. tunnel key 1
111. tunnel protection ipsec profile IPSECPROFILE10 shared
112. !
113. interface Tunnel2
114. ip address 11.11.11.3 255.255.255.0
115. no ip redirects
116. ip nhrp authentication nhrp2
117. ip nhrp map multicast 87.55.44.1
118. ip nhrp map 11.11.11.1 87.55.44.1
119. ip nhrp network-id 2
120. ip nhrp nhs 11.11.11.1
121. zone-member security INSIDE
122. ip ospf network broadcast
123. ip ospf cost 20
124. ip ospf priority 0
125. ip ospf 1 area 0
126. tunnel source FastEthernet0/0
127. tunnel mode gre multipoint
128. tunnel key 2
129. tunnel protection ipsec profile IPSECPROFILE10 shared
130. !
131. interface FastEthernet0/0
132. ip address 87.55.42.1 255.255.255.248
133. zone-member security OUTSIDE
134. speed 100
135. full-duplex
136. !
137. interface FastEthernet0/1
138. ip address 192.168.3.254 255.255.255.0
139. zone-member security INSIDE
140. ip ospf 1 area 0
141. duplex auto
142. speed auto
143. !
144. interface FastEthernet1/0
145. no ip address
146. duplex auto
147. speed auto
148. !
149. router ospf 1
150. log-adjacency-changes
151. !
152. ip forward-protocol nd
153. ip route 0.0.0.0 0.0.0.0 87.55.42.6
154. !
155. !
156. no ip http server
157. no ip http secure-server
158. !
159. !
160. !
161. !
162. !
163. !
164. !
165. control-plane
166. !
167. !
168. !
169. !
170. !
171. !
172. !
173. !
174. !
175. !
176. line con 0
177. exec-timeout 0 0
178. privilege level 15
179. logging synchronous
180. line aux 0
181. exec-timeout 0 0
182. privilege level 15
183. logging synchronous
184. line vty 0 4
185. login
186. !
187. ntp server 87.55.45.6
188. ntp server 87.55.42.6
189. !
190. end