API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 13th, 2017
108
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.84 KB | None | 0 0
raw download clone embed print report
  1. =~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.04.24 15:35:26 =~=~=~=~=~=~=~=~=~=~=~=
  2.  
  3.  
  4. User Access Verification
  5.  
  6. Username: admin
  7. Password:
  8.  
  9. smarttech#sh run
  10. Building configuration...
  11.  
  12. Current configuration : 9547 bytes
  13. !
  14. version 12.4
  15. no service pad
  16. service timestamps debug datetime msec
  17. service timestamps log datetime msec
  18. no service password-encryption
  19. !
  20. hostname smarttech
  21. !
  22. boot-start-marker
  23. boot-end-marker
  24. !
  25. logging buffered 51200 warnings
  26. !
  27. aaa new-model
  28. !
  29. !
  30. aaa authentication login default local
  31. aaa authentication login sdm_vpn_xauth_ml_1 local
  32. aaa authorization exec default local
  33. aaa authorization network sdm_vpn_group_ml_1 local
  34. !
  35. !
  36. aaa session-id common
  37. !
  38. crypto pki trustpoint TP-self-signed-2114984278
  39. enrollment selfsigned
  40. subject-name cn=IOS-Self-Signed-Certificate-2114984278
  41. revocation-check none
  42. rsakeypair TP-self-signed-2114984278
  43. !
  44. !
  45. crypto pki certificate chain TP-self-signed-2114984278
  46. certificate self-signed 01
  47. 30820250 308201B9 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
  48. 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
  49. 69666963 6174652D 32313134 39383432 3738301E 170D3032 30343033 32313431
  50. 35385A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
  51. 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 31313439
  52. 38343237 3830819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
  53. 8100ADFC E6801182 12328456 5DC2CFE5 605A1C3D 08B55561 A835193C F5E3A225
  54. 14047521 913615AA A05C6297 F9BF2405 C8D1635A 5A5FBE62 1CB23C17 58F2290B
  55. 86E47E40 8177A177 1248DBA0 E45176AD B3555E99 4A1392D9 6BE3F285 12AF456C
  56. 10C608D7 669E8FA8 F88DB782 5B3D0955 E4F18C6C D47F8716 7E68FA58 B26EEFEB
  57. 050D0203 010001A3 78307630 0F060355 1D130101 FF040530 030101FF 30230603
  58. 551D1104 1C301A82 18736D61 72747465 63682E79 6F757264 6F6D6169 6E2E636F
  59. 6D301F06 03551D23 04183016 80146B2E A410B9FC B188342A 8DF6D669 4BA9631A
  60. 7AFF301D 0603551D 0E041604 146B2EA4 10B9FCB1 88342A8D F6D6694B A9631A7A
  61. FF300D06 092A8648 86F70D01 01040500 03818100 6EE2D486 99C88C1A CD3E0309
  62. 6A964B0B DB3E307F E34F9168 0D6B97FC F2036C37 2AFC2BA6 6848A9FF F7FC9030
  63. E068CFDD 3842CB7C E259162F 5F692238 34EC599B 73855166 5C148B76 557B2FDC
  64. FDC0262D 47EE78B8 2E0CE318 2FB5E2A3 FD7EA57D 331671D2 7DC0D417 CAAB6347
  65. 2A423B85 6FE0D321 072CACFA D092D5BC 6D186247
  66. quit
  67. dot11 syslog
  68. ip cef
  69. !
  70. !
  71. no ip dhcp use vrf connected
  72. ip dhcp excluded-address 192.168.100.1 192.168.100.99
  73. ip dhcp excluded-address 192.168.100.201 192.168.100.254
  74. !
  75. ip dhcp pool sdm-pool1
  76. network 192.168.100.0 255.255.255.0
  77. dns-server 192.168.100.2 82.179.70.4
  78. default-router 192.168.100.1
  79. !
  80. !
  81. no ip domain lookup
  82. ip domain name yourdomain.com
  83. ip name-server 82.179.70.4
  84. ip inspect name SDM_LOW cuseeme
  85. ip inspect name SDM_LOW dns
  86. ip inspect name SDM_LOW ftp
  87. ip inspect name SDM_LOW h323
  88. ip inspect name SDM_LOW https
  89. ip inspect name SDM_LOW icmp
  90. ip inspect name SDM_LOW imap
  91. ip inspect name SDM_LOW pop3
  92. ip inspect name SDM_LOW netshow
  93. ip inspect name SDM_LOW rcmd
  94. ip inspect name SDM_LOW realaudio
  95. ip inspect name SDM_LOW rtsp
  96. ip inspect name SDM_LOW esmtp
  97. ip inspect name SDM_LOW sqlnet
  98. ip inspect name SDM_LOW streamworks
  99. ip inspect name SDM_LOW tftp
  100. ip inspect name SDM_LOW tcp
  101. ip inspect name SDM_LOW udp
  102. ip inspect name SDM_LOW vdolive
  103. ip auth-proxy max-nodata-conns 3
  104. ip admission max-nodata-conns 3
  105. !
  106. multilink bundle-name authenticated
  107. parameter-map type regex sdm-regex-nonascii
  108. pattern [^\x00-\x80]
  109.  
  110. !
  111. !
  112. username admin privilege 15 secret 5 $1$oyUA$6Sh4y0Ea27ZoWCqc93e1//
  113. !
  114. !
  115. crypto isakmp policy 1
  116. encr 3des
  117. authentication pre-share
  118. group 2
  119. !
  120. crypto isakmp policy 5
  121. encr 3des
  122. authentication pre-share
  123. group 2
  124. lifetime 28800
  125. crypto isakmp key dgecnsytbee address 195.182.150.191
  126. crypto isakmp key dgecnsytbe address 80.247.177.18
  127. crypto isakmp key dgecnsyttps address 194.85.161.147
  128. !
  129. crypto isakmp client configuration group testgroup
  130. key fkg7h4f3v6
  131. pool SDM_POOL_1
  132. netmask 255.255.255.0
  133. crypto isakmp profile sdm-ike-profile-1
  134. match identity group testgroup
  135. client authentication list sdm_vpn_xauth_ml_1
  136. isakmp authorization list sdm_vpn_group_ml_1
  137. client configuration address respond
  138. !
  139. !
  140. crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  141. !
  142. crypto ipsec profile SDM_Profile1
  143. set isakmp-profile sdm-ike-profile-1
  144. !
  145. !
  146. crypto map SDM_CMAP_1 1 ipsec-isakmp
  147. description Tunnel to195.182.150.191
  148. set peer 195.182.150.191
  149. set transform-set ESP-3DES-SHA
  150. match address 102
  151. crypto map SDM_CMAP_1 2 ipsec-isakmp
  152. description Tunnel to80.247.177.18
  153. set peer 80.247.177.18
  154. set transform-set ESP-3DES-SHA
  155. match address 106
  156. crypto map SDM_CMAP_1 3 ipsec-isakmp
  157. description Tunnel to194.85.161.147
  158. set peer 194.85.161.147
  159. set transform-set ESP-3DES-SHA
  160. match address 114
  161. !
  162. archive
  163. log config
  164. hidekeys
  165. !
  166. !
  167. !
  168. !
  169. !
  170. interface Loopback0
  171. ip address 172.16.1.1 255.255.255.0
  172. !
  173. interface FastEthernet0
  174. !
  175. interface FastEthernet1
  176. !
  177. interface FastEthernet2
  178. !
  179. interface FastEthernet3
  180. !
  181. interface FastEthernet4
  182. description $FW_OUTSIDE$$ETH-LAN$
  183. ip address 77.234.220.150 255.255.255.252
  184. ip access-group 160 in
  185. ip nat outside
  186. ip inspect SDM_LOW out
  187. ip virtual-reassembly
  188. duplex auto
  189. speed auto
  190. crypto map SDM_CMAP_1
  191. !
  192. interface Vlan1
  193. description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$
  194. ip address 192.168.100.1 255.255.255.0
  195. no ip redirects
  196. no ip proxy-arp
  197. ip nat inside
  198. ip virtual-reassembly
  199. ip tcp adjust-mss 1452
  200. !
  201. ip local pool SDM_POOL_1 172.16.1.2 172.16.1.10
  202. ip forward-protocol nd
  203. ip route 0.0.0.0 0.0.0.0 77.234.220.149 permanent
  204. !
  205. !
  206. ip http server
  207. ip http authentication local
  208. ip http secure-server
  209. ip http timeout-policy idle 60 life 86400 requests 10000
  210. ip nat pool PAT 77.234.220.150 77.234.220.150 netmask 255.255.255.252
  211. ip nat inside source route-map SDM_RMAP_4 interface FastEthernet4 overload
  212. !
  213. access-list 1 remark SDM_ACL Category=2
  214. access-list 1 permit 192.168.100.0 0.0.0.255
  215. access-list 100 remark SDM_ACL Category=128
  216. access-list 100 permit ip host 255.255.255.255 any
  217. access-list 100 permit ip 127.0.0.0 0.255.255.255 any
  218. access-list 100 permit ip 82.179.71.0 0.0.0.255 any
  219. access-list 101 permit ip host 217.148.211.3 any
  220. access-list 101 permit ip host 94.125.3.57 any
  221. access-list 101 permit ip host 194.85.161.146 any
  222. access-list 102 remark SDM_ACL Category=4
  223. access-list 102 remark IPSec Rule
  224. access-list 102 permit ip 192.168.100.0 0.0.0.255 192.168.0.0 0.0.0.255
  225. access-list 103 remark SDM_ACL Category=128
  226. access-list 103 permit ip host 195.182.150.191 any
  227. access-list 103 permit ip host 80.247.177.18 any
  228. access-list 103 permit ip host 194.85.161.147 any
  229. access-list 104 remark SDM_ACL Category=0
  230. access-list 104 remark IPSec Rule
  231. access-list 104 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
  232. access-list 104 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
  233. access-list 104 permit ip 192.168.10.0 0.0.0.255 192.168.100.0 0.0.0.255
  234. access-list 106 remark SDM_ACL Category=4
  235. access-list 106 remark IPSec Rule
  236. access-list 106 permit ip 192.168.100.0 0.0.0.255 192.168.121.0 0.0.0.255
  237. access-list 107 remark SDM_ACL Category=0
  238. access-list 107 remark IPSec Rule
  239. access-list 107 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
  240. access-list 107 remark IPSec Rule
  241. access-list 107 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
  242. access-list 108 remark SDM_ACL Category=4
  243. access-list 108 permit ip 192.168.100.0 0.0.0.255 any
  244. access-list 109 remark SDM_ACL Category=4
  245. access-list 109 permit ip 192.168.100.0 0.0.0.255 any
  246. access-list 110 remark SDM_ACL Category=4
  247. access-list 110 permit ip 192.168.100.0 0.0.0.255 any
  248. access-list 111 remark SDM_ACL Category=0
  249. access-list 111 remark IPSec Rule
  250. access-list 111 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
  251. access-list 111 remark IPSec Rule
  252. access-list 111 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
  253. access-list 112 remark SDM_ACL Category=0
  254. access-list 112 remark IPSec Rule
  255. access-list 112 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
  256. access-list 112 remark IPSec Rule
  257. access-list 112 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
  258. access-list 113 deny ip 192.168.100.0 0.0.0.255 192.168.0.0 0.0.0.255
  259. access-list 113 deny ip 192.168.100.0 0.0.0.255 192.168.121.0 0.0.0.255
  260. access-list 113 deny ip 192.168.100.0 0.0.0.255 192.168.10.0 0.0.0.255
  261. access-list 113 permit ip 192.168.100.0 0.0.0.255 any
  262. access-list 114 permit ip 192.168.100.0 0.0.0.255 192.168.10.0 0.0.0.255
  263. access-list 150 permit ip any any
  264. access-list 160 permit tcp host 217.148.211.3 any eq 22
  265. access-list 160 permit tcp host 217.148.211.3 any eq 443
  266. access-list 160 permit ip host 94.125.3.57 any
  267. access-list 160 permit udp any any eq isakmp
  268. access-list 160 permit ahp any any
  269. access-list 160 permit esp any any
  270. access-list 160 permit udp any any eq non500-isakmp
  271. access-list 160 permit icmp any any echo-reply
  272. access-list 160 permit icmp any any time-exceeded
  273. access-list 160 permit icmp any any unreachable
  274. access-list 160 permit ip 192.168.10.0 0.0.0.255 192.168.100.0 0.0.0.255
  275. access-list 160 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
  276. access-list 160 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
  277. access-list 160 deny ip 10.0.0.0 0.255.255.255 any
  278. access-list 160 deny ip 172.16.0.0 0.15.255.255 any
  279. access-list 160 deny ip 192.168.0.0 0.0.255.255 any
  280. access-list 160 deny ip 127.0.0.0 0.255.255.255 any
  281. access-list 160 deny ip host 255.255.255.255 any
  282. access-list 160 deny ip host 0.0.0.0 any
  283. access-list 160 deny ip any any log
  284. no cdp run
  285. !
  286. !
  287. !
  288. route-map SDM_RMAP_4 permit 1
  289. match ip address 113
  290. !
  291. !
  292. control-plane
  293. !
  294. !
  295. line con 0
  296. no modem enable
  297. line aux 0
  298. line vty 0 4
  299. privilege level 15
  300. transport input telnet ssh
  301. !
  302. scheduler max-task-time 5000
  303. end
  304.  
  305. smarttech# logo
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!