!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
no network-clock-participate slot 1 
no network-clock-participate wic 0 
ip cef
!
!
!
!
no ip domain lookup
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
ip ftp username david
ip ftp password 7 105C0E1C021417
!         
!
crypto isakmp policy 50
 encr aes
 authentication pre-share
 group 2
crypto isakmp key hello123 address 10.1.23.2 no-xauth
!
!
crypto ipsec transform-set DEMO esp-aes esp-sha-hmac 
!
crypto map VPN_MAP 10 ipsec-isakmp 
 set peer 10.1.23.2
 set transform-set DEMO 
 match address INT_TRAFFIC
!
!
!
!
interface FastEthernet0/0
 description ** CONNECTION TO SW2 FA0/24 **
 ip address 192.168.10.1 255.255.255.0
 duplex auto
 speed auto
 no keepalive
!
interface Serial0/0
 description ** FR BEARER **
 no ip address
 encapsulation frame-relay
!
interface Serial0/0.201 point-to-point
 description ** FR LINK TO R1 **
 ip address 10.1.12.2 255.255.255.252
 shutdown
 frame-relay interface-dlci 201 CISCO   
!
interface Serial0/0.203 point-to-point
 description ** FR LINK TO R3 **
 ip address 10.1.23.1 255.255.255.252
 frame-relay interface-dlci 203 CISCO   
 crypto map VPN_MAP
!
interface Serial0/0.204 point-to-point
 description ** FR LINK TO R4 **
 ip address 10.1.24.1 255.255.255.252
 frame-relay interface-dlci 204 CISCO   
!
interface FastEthernet0/1
 no ip address
 duplex auto
 speed auto
!
interface Serial0/1
 no ip address
 shutdown
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
ip access-list extended INT_TRAFFIC
 permit ip 192.168.10.0 0.0.0.255 192.168.20.0 0.0.0.255
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
alias exec s show ip int brief
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 password 7 0016140303580E
 login
!
!
end