version 15.0service timestamps debug datetime msecservice timestamps log dat

1. version 15.0
2. service timestamps debug datetime msec
3. service timestamps log datetime msec
4. service password-encryption
5. !
6. hostname mfa-odn-columbia
7. !
8. boot-start-marker
9. boot-end-marker
10. !
11. enable secret 5 $1$Ox4L$tGdyPlBRSPOPdBxGC.Ljj.
12. !
13. no aaa new-model
14. !
15. !
16. !
17. !
18. crypto pki trustpoint TP-self-signed-2290911354
19. enrollment selfsigned
20. subject-name cn=IOS-Self-Signed-Certificate-2290911354
21. revocation-check none
22. rsakeypair TP-self-signed-2290911354
23. !
24. !
25. crypto pki certificate chain TP-self-signed-2290911354
26. certificate self-signed 01 nvram:IOS-Self-Sig#2.cer
27. no ip source-route
28. !
29. !
30. !
31. !
32. ip cef
33. no ip domain lookup
34. ip domain name mfaodntest.com
35. no ipv6 cef
36. !
37. !
38. multilink bundle-name authenticated
39. license udi pid CISCO891-K9 sn FTX15218311
40. !
41. !
42. username root privilege 15 password 7 123601194A5A5C55
43. !
44. !
45. ip ssh rsa keypair-name mfa-odn-columbia.mfaodntest.com
46. ip ssh version 2
47. !
48. !
49. crypto isakmp policy 1
50. encr aes
51. authentication pre-share
52. group 5
53. crypto isakmp key e254zh98 address 100.42.0.188
54. !
55. !
56. crypto ipsec transform-set esp-aes-sha esp-aes esp-sha-hmac
57. !
58. crypto map vpn 10 ipsec-isakmp
59. set peer 100.42.0.188
60. set transform-set esp-aes-sha
61. match address 101
62. !
63. !
64. !
65. !
66. !
67. interface Loopback0
68. ip address 100.100.100.100 255.255.255.255
69. ip nat outside
70. ip virtual-reassembly
71. shutdown
72. !
73. !
74. interface FastEthernet0
75. !
76. !
77. interface FastEthernet1
78. !
79. !
80. interface FastEthernet2
81. switchport access vlan 2
82. no keepalive
83. !
84. !
85. interface FastEthernet3
86. !
87. !
88. interface FastEthernet4
89. !
90. !
91. interface FastEthernet5
92. !
93. !
94. interface FastEthernet6
95. !
96. !
97. interface FastEthernet7
98. !
99. !
100. interface FastEthernet8
101. no ip address
102. ip virtual-reassembly
103. shutdown
104. duplex auto
105. speed auto
106. !
107. !
108. interface GigabitEthernet0
109. ip address 216.106.7.150 255.255.255.224
110. ip nat outside
111. ip virtual-reassembly
112. duplex auto
113. speed auto
114. crypto map vpn
115. !
116. !
117. interface Vlan1
118. no ip address
119. !
120. !
121. interface Vlan2
122. ip address 10.1.0.112 255.255.240.0
123. ip nat inside
124. ip virtual-reassembly
125. no autostate
126. !
127. !
128. interface Async1
129. no ip address
130. encapsulation slip
131. !
132. !
133. ip forward-protocol nd
134. ip http server
135. ip http authentication local
136. ip http secure-server
137. !
138. !
139. ip nat inside source list NAT interface GigabitEthernet0 overload
140. ip route 0.0.0.0 0.0.0.0 216.106.7.129
141. !
142. ip access-list extended NAT
143. deny ip 10.1.0.0 0.0.15.255 192.168.56.0 0.0.0.255
144. deny ip 10.1.0.0 0.0.15.255 10.237.1.0 0.0.0.15
145. permit ip 10.1.0.0 0.0.15.255 any
146. !
147. access-list 101 permit ip 10.1.0.0 0.0.15.255 10.237.1.0 0.0.0.15
148. access-list 101 permit ip 10.1.0.0 0.0.15.255 192.168.56.0 0.0.0.255
149. !
150. !
151. !
152. !
153. !
154. !
155. control-plane
156. !
157. !
158. !
159. line con 0
160. logging synchronous
161. login local
162. line 1
163. modem InOut
164. stopbits 1
165. speed 115200
166. flowcontrol hardware
167. line aux 0
168. line vty 0 4
169. password 7 09434A0741544743
170. login local
171. transport preferred ssh
172. transport input telnet ssh
173. line vty 5 15
174. login local
175. transport preferred ssh
176. !
177. scheduler max-task-time 5000
178. end