Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- !
- ! ADTRAN, Inc. OS version R10.5.1.E
- ! Boot ROM version 13.03.00.SB
- ! Platform: NetVanta 3448, part number 1200821E1
- ! Serial number LBADTN1014AQ443
- !
- !
- hostname "Router"
- enable password admin
- !
- clock no-auto-correct-DST
- !
- ip subnet-zero
- ip classless
- ip default-gateway x.x.x.x
- ip routing
- ipv6 unicast-routing
- !
- !
- name-server x.x.x.x x.x.x.x
- !
- !
- no auto-config
- !
- event-history on
- no logging forwarding
- no logging email
- !
- no service password-encryption
- !
- username "admin" password "admin"
- !
- !
- ip firewall
- no ip firewall alg msn
- no ip firewall alg mszone
- no ip firewall alg h323
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- no dot11ap access-point-control
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- ip crypto
- !
- crypto ike client configuration pool VPN
- ip-range 172.16.1.1 172.16.1.100
- dns-server 172.16.88.1
- netbios-name-server 172.16.88.1
- !
- crypto ike policy 100
- no initiate
- respond anymode
- local-id address x.x.x.x
- peer any
- client configuration pool VPN
- attribute 3
- encryption 3des
- hash md5
- authentication pre-share
- attribute 4
- encryption 3des
- authentication pre-share
- group 2
- !
- crypto ike remote-id any preshared-key admin ike-policy 100 crypto map VPN 10 no-xauth
- !
- crypto ipsec transform-set esp-3des-esp-md5-hmac esp-3des esp-md5-hmac
- mode tunnel
- !
- crypto map VPN 10 ipsec-ike
- description VPN
- match address VPN-10-vpn-selectors
- set transform-set esp-3des-esp-md5-hmac
- ike-policy 100
- mobile
- !
- !
- !
- !
- vlan 1
- name "Default"
- !
- !
- !
- no ethernet cfm
- !
- interface loop 1
- no ip address
- shutdown
- !
- interface eth 0/1
- ip address x.x.x.x 255.255.254.0
- ip access-policy Public
- crypto map VPN
- no rtp quality-monitoring
- no shutdown
- !
- !
- interface eth 0/2
- ip address 172.16.88.1 255.255.255.0
- no shutdown
- !
- !
- !
- interface switchport 0/1
- no shutdown
- !
- interface switchport 0/2
- no shutdown
- !
- interface switchport 0/3
- no shutdown
- !
- interface switchport 0/4
- no shutdown
- !
- interface switchport 0/5
- no shutdown
- !
- interface switchport 0/6
- no shutdown
- !
- interface switchport 0/7
- no shutdown
- !
- interface switchport 0/8
- no shutdown
- !
- !
- !
- interface vlan 1
- ip address 10.0.0.1 255.255.255.0
- ip access-policy Private
- no shutdown
- !
- !
- !
- !
- !
- !
- !
- ip access-list standard wizard-ics
- remark Internet Connection Sharing
- permit any
- !
- !
- ip access-list extended self
- remark Traffic to NetVanta
- permit ip any any log
- !
- ip access-list extended VPN-10-vpn-selectors
- permit ip 10.0.0.0 0.0.0.255 any
- permit ip any 10.0.0.0 0.0.0.255 log
- permit ip 172.16.88.0 0.0.0.255 any log
- permit ip any 172.16.88.0 0.0.0.255 log
- !
- ip access-list extended wizard-remote-access
- remark do not hand edit this ACL
- permit tcp any any eq www log
- permit tcp any any eq telnet log
- permit tcp any any eq ssh log
- permit tcp any any eq ftp log
- permit icmp any any echo log
- permit tcp any any eq https log
- !
- !
- !
- !
- ip policy-class Private
- allow list VPN-10-vpn-selectors stateless
- allow list self self
- nat source list wizard-ics interface eth 0/1 overload
- !
- ip policy-class Public
- allow reverse list VPN-10-vpn-selectors stateless
- allow list wizard-remote-access self
- !
- !
- !
- ip route 0.0.0.0 0.0.0.0 x.x.x.x
- !
- no tftp server
- no tftp server overwrite
- http server
- http session-timeout 28800
- no http secure-server
- no snmp agent
- no ip ftp server
- ip ftp server default-filesystem flash
- no ip scp server
- no ip sntp server
- !
- !
- !
- !
- !
- !
- !
- !
- !
- ip sip udp 5060
- ip sip tcp 5060
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- line con 0
- login
- password admin
- !
- line telnet 0 4
- login
- password admin
- no shutdown
- line ssh 0 4
- login local-userlist
- no shutdown
- !
- !
- ntp server x.x.x.x source ethernet 0/1
- ntp server x.x.x.x source ethernet 0/1 prefer
- !
- !
- !
- !
- !
- end
- Router#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement