- ip multicast-routing #(only required for MDP access)
- crypto isakmp policy 2
- encr 3des
- hash md5
- authentication pre-share
- crypto isakmp key PasSw0rD
- address 66.54.243.35
- !
- crypto ipsec transform-set cmevpn esp-3des esp-md5-hmac
- !
- crypto map cmevpn 1 ipsec-isakmp
- set peer 66.54.243.35
- set transform-set cmevpn
- match address 100
- !
- interface Loopback0 #(Leave interface shutdown if MDP access not required)
- ip address 10.145.0.129 255.255.255.255
- shutdown
- !
- interface Tunnel0 #(Leave interface shutdown if MDP access not required)
- ip address 10.145.2.222 255.255.255.252
- ip pim sparse-mode
- tunnel source 10.145.0.129
- tunnel destination 10.145.254.1
- shutdown
- !
- interface fa0/0
- ip address 10.145.129.1 255.255.255.0
- ip pim sparse-mode #(only required for MDP access)
- duplex auto
- speed auto
- no cdp enable
- !
- interface fa0/1
- ip address 184.72.235.104 255.255.255. x # (Customer public interface)
- crypto map cmevpn
- ip access-group 199 in
- !
- ip route 10.132.19.0 255.255.255.0 Tunnel0 #(only required for MDP access)
- #(the following route statements can be replaced with a default route
- statement)
- ip route 10.135.70.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.135.71.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.135.172.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.135.173.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.140.120.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.140.18.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.1.16.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.1.63.0 255.255.255.0 (ip address of corporate internet router)
- ip route 10.145.254.1 255.255.255.255 (ip address of corporate internet router)
- ip classless
- no ip http server
- no ip http secure-server
- ip pim rp-address 10.132.19.12 #(only required for MDP access)
- ip mroute 10.132.19.0 255.255.255.0 tunnel0 #(only required for MDP access)
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.135.70.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.135.71.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.135.172.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.135.173.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.140.120.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.140.18.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.1.16.0 0.0.0.255
- access-list 100 permit ip 10.145.129.0 0.0.0.255 10.1.63.0 0.0.0.255
- access-list 100 permit gre host 10.145.0.129 host 10.145.254.1 #(only required
- for MDP access)
- access-list 199 permit gre host 10.145.254.1 host 10.145.0.129 #(only required
- for MDP access)
- access-list 199 permit ip 10.135.70.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.135.71.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.135.172.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.135.173.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.140.120.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.140.18.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.1.16.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit ip 10.1.63.0 0.0.0.255 10.145.129.0 0.0.0.255
- access-list 199 permit udp any any eq isakmp
- access-list 199 permit ahp any any
- access-list 199 permit esp any any
Don't like ads? PRO users don't see any ads ;-)
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
create a new version of this paste
RAW Paste Data