Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- R1#show run
- Building configuration...
- Current configuration : 4527 bytes
- !
- ! Last configuration change at 05:07:43 UTC Sat Mar 2 2002
- ! NVRAM config last updated at 00:31:49 UTC Fri Mar 1 2002
- !
- version 12.4
- service timestamps debug datetime msec
- service timestamps log datetime msec
- no service password-encryption
- !
- hostname R1
- !
- boot-start-marker
- boot-end-marker
- !
- !
- no aaa new-model
- memory-size iomem 5
- no ip icmp rate-limit unreachable
- ip cef
- ip tcp synwait-time 5
- !
- !
- !
- !
- no ip domain lookup
- ip domain name cisco.com
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- crypto pki trustpoint R1
- enrollment url http://1.1.1.2:80
- revocation-check crl
- auto-enroll
- !
- !
- crypto pki certificate chain R1
- certificate 04
- 308201FC 30820165 A0030201 02020104 300D0609 2A864886 F70D0101 04050030
- 26312430 22060355 0403131B 63697363 6F312E63 6973636F 2E636F6D 204C3D52
- 54502043 3D555330 1E170D30 32303330 32303530 3831305A 170D3032 30393138
- 30353038 31305A30 1D311B30 1906092A 864886F7 0D010902 160C5231 2E636973
- 636F2E63 6F6D305C 300D0609 2A864886 F70D0101 01050003 4B003048 024100C0
- 8DB52297 C315C40B B57BD904 9ED49AF5 656F4F6A 8A234C70 FAC63743 4EDF6EE5
- 297AC3D9 8D28E562 1A100C83 E25F8D61 6288C80F FC6FFDBD 6A025CE7 C9150B02
- 03010001 A3818630 81833034 0603551D 1F042D30 2B3029A0 27A02586 23687474
- 703A2F2F 312E312E 312E322F 63697363 6F316364 702E6369 73636F31 2E63726C
- 300B0603 551D0F04 04030205 A0301F06 03551D23 04183016 8014C347 B61CEC35
- A35B7694 5E7A0485 FCEC9A06 163D301D 0603551D 0E041604 143728F5 4D9AD75D
- F121AD70 897CF7D6 C846F3CF 3E300D06 092A8648 86F70D01 01040500 03818100
- B461CFB2 65BC6C62 D89D8083 219A809D FBC7F1C9 AD1EC611 89EDB23E C1DDA50D
- 3FD6ECFF AE1FB895 0AE874EC A6EEE03E 8FF6CEE9 55C3E7EA 1CAE72CF 3F3DB050
- 49D58C74 C419936B 982C202C A106D90C 1B5D025A FA9ED8FD 5EE5EAB8 B4DE7ABE
- 639CF4A0 A55B3E13 8BD82C6F 80DFDADE 62EFBD53 A4847A33 D0F7936E D1C0E534
- quit
- certificate ca 01
- 30820225 3082018E A0030201 02020101 300D0609 2A864886 F70D0101 04050030
- 26312430 22060355 0403131B 63697363 6F312E63 6973636F 2E636F6D 204C3D52
- 54502043 3D555330 1E170D30 32303330 31303030 3831325A 170D3033 30333031
- 30303038 31325A30 26312430 22060355 0403131B 63697363 6F312E63 6973636F
- 2E636F6D 204C3D52 54502043 3D555330 819F300D 06092A86 4886F70D 01010105
- 0003818D 00308189 02818100 D9953278 F77165B3 0CC4E37D F193042A D0E16F27
- 0DB7542B 381EF31E 9476AA4C D7FE3D1D F57EB959 FC772582 31FC5330 EAD42AB3
- E98B4D5A 58A78DE0 D09E8A7A 68C60EF9 77C5AF40 1315760B F9C17A06 74E3FF9B
- 3FF10B77 6F8D07ED 03814DE7 1639D7C9 E9760D4E 9F230B3E C1B1B798 F93197EF
- C31FD430 11BA9037 75B98A43 02030100 01A36330 61300F06 03551D13 0101FF04
- 05300301 01FF300E 0603551D 0F0101FF 04040302 0186301F 0603551D 23041830
- 168014C3 47B61CEC 35A35B76 945E7A04 85FCEC9A 06163D30 1D060355 1D0E0416
- 0414C347 B61CEC35 A35B7694 5E7A0485 FCEC9A06 163D300D 06092A86 4886F70D
- 01010405 00038181 00A89382 7BF082EF C87EE39D 31E2B3A6 615FDE54 5EC57566
- FBE3048E B933A2F6 7B6369D8 F289E75D DD46407C 4F2E3DE4 19FCBA0F 012EF5C8
- D6BEA923 EC24705E 1360C3DC 77543C6A F040FFA9 3D4B55E8 77F0FACB 359F5EC7
- B4E6EF97 795265B1 FA94192B 759C144F 51644B11 24FBB71B B0BE71F8 8E6872BA
- 48A7A7C5 9D554761 1E
- quit
- !
- !
- !
- crypto isakmp policy 1
- encr aes 256
- group 5
- lifetime 3600
- !
- !
- crypto ipsec transform-set MYSET1 esp-aes esp-sha-hmac
- !
- crypto map MYMAP1 1 ipsec-isakmp
- set peer 2.2.2.3
- set transform-set MYSET1
- set pfs group2
- match address 100
- !
- !
- !
- !
- interface FastEthernet0/0
- ip address 1.1.1.1 255.255.255.0
- ip virtual-reassembly
- duplex auto
- speed auto
- crypto map MYMAP1
- !
- interface FastEthernet0/1
- ip address 172.16.0.1 255.255.255.0
- duplex auto
- speed auto
- !
- interface FastEthernet1/0
- no ip address
- ip virtual-reassembly
- duplex auto
- speed auto
- !
- interface FastEthernet2/0
- no ip address
- shutdown
- duplex auto
- speed auto
- !
- router ospf 1
- log-adjacency-changes
- passive-interface FastEthernet1/0
- network 1.1.1.0 0.0.0.255 area 0
- !
- ip route 0.0.0.0 0.0.0.0 FastEthernet0/0
- ip route 0.0.0.0 0.0.0.0 1.1.1.2
- !
- !
- no ip http server
- no ip http secure-server
- ip nat pool POOL 1.1.1.15 1.1.1.20 netmask 255.255.255.0
- ip nat inside source list 1 pool POOL overload
- !
- access-list 1 permit 172.16.0.0 0.0.0.255
- access-list 100 permit ip 172.16.0.0 0.0.0.255 192.168.15.0 0.0.0.255
- no cdp log mismatch duplex
- !
- !
- !
- !
- control-plane
- !
- !
- !
- !
- !
- !
- !
- !
- !
- !
- line con 0
- exec-timeout 0 0
- privilege level 15
- logging synchronous
- line aux 0
- exec-timeout 0 0
- privilege level 15
- logging synchronous
- line vty 0 4
- login
- !
- ntp clock-period 17179832
- ntp server 1.1.1.2
- !
- end
- R1#show crypto pki certificates
- Certificate
- Status: Available
- Certificate Serial Number: 04
- Certificate Usage: General Purpose
- Issuer:
- cn=cisco1.cisco.com L\=RTP C\=US
- Subject:
- Name: R1.cisco.com
- hostname=R1.cisco.com
- CRL Distribution Points:
- http://1.1.1.2/cisco1cdp.cisco1.crl
- Validity Date:
- start date: 05:08:10 UTC Mar 2 2002
- end date: 05:08:10 UTC Sep 18 2002
- Associated Trustpoints: R1
- CA Certificate
- Status: Available
- Certificate Serial Number: 01
- Certificate Usage: Signature
- Issuer:
- cn=cisco1.cisco.com L\=RTP C\=US
- Subject:
- cn=cisco1.cisco.com L\=RTP C\=US
- Validity Date:
- start date: 00:08:12 UTC Mar 1 2002
- end date: 00:08:12 UTC Mar 1 2003
- Associated Trustpoints: R1
- R1#show crypto isakmp policy
- Global IKE policy
- Protection suite of priority 1
- encryption algorithm: AES - Advanced Encryption Standard (256 bit keys).
- hash algorithm: Secure Hash Standard
- authentication method: Rivest-Shamir-Adleman Signature
- Diffie-Hellman group: #5 (1536 bit)
- lifetime: 3600 seconds, no volume limit
- Default protection suite
- encryption algorithm: DES - Data Encryption Standard (56 bit keys).
- hash algorithm: Secure Hash Standard
- authentication method: Rivest-Shamir-Adleman Signature
- Diffie-Hellman group: #1 (768 bit)
- lifetime: 86400 seconds, no volume limit
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement