Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- =~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.04.24 15:35:26 =~=~=~=~=~=~=~=~=~=~=~=
- User Access Verification
- Username: admin
- Password:
- smarttech#sh run
- Building configuration...
- Current configuration : 9547 bytes
- !
- version 12.4
- no service pad
- service timestamps debug datetime msec
- service timestamps log datetime msec
- no service password-encryption
- !
- hostname smarttech
- !
- boot-start-marker
- boot-end-marker
- !
- logging buffered 51200 warnings
- !
- aaa new-model
- !
- !
- aaa authentication login default local
- aaa authentication login sdm_vpn_xauth_ml_1 local
- aaa authorization exec default local
- aaa authorization network sdm_vpn_group_ml_1 local
- !
- !
- aaa session-id common
- !
- crypto pki trustpoint TP-self-signed-2114984278
- enrollment selfsigned
- subject-name cn=IOS-Self-Signed-Certificate-2114984278
- revocation-check none
- rsakeypair TP-self-signed-2114984278
- !
- !
- crypto pki certificate chain TP-self-signed-2114984278
- certificate self-signed 01
- 30820250 308201B9 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
- 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
- 69666963 6174652D 32313134 39383432 3738301E 170D3032 30343033 32313431
- 35385A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
- 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 31313439
- 38343237 3830819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
- 8100ADFC E6801182 12328456 5DC2CFE5 605A1C3D 08B55561 A835193C F5E3A225
- 14047521 913615AA A05C6297 F9BF2405 C8D1635A 5A5FBE62 1CB23C17 58F2290B
- 86E47E40 8177A177 1248DBA0 E45176AD B3555E99 4A1392D9 6BE3F285 12AF456C
- 10C608D7 669E8FA8 F88DB782 5B3D0955 E4F18C6C D47F8716 7E68FA58 B26EEFEB
- 050D0203 010001A3 78307630 0F060355 1D130101 FF040530 030101FF 30230603
- 551D1104 1C301A82 18736D61 72747465 63682E79 6F757264 6F6D6169 6E2E636F
- 6D301F06 03551D23 04183016 80146B2E A410B9FC B188342A 8DF6D669 4BA9631A
- 7AFF301D 0603551D 0E041604 146B2EA4 10B9FCB1 88342A8D F6D6694B A9631A7A
- FF300D06 092A8648 86F70D01 01040500 03818100 6EE2D486 99C88C1A CD3E0309
- 6A964B0B DB3E307F E34F9168 0D6B97FC F2036C37 2AFC2BA6 6848A9FF F7FC9030
- E068CFDD 3842CB7C E259162F 5F692238 34EC599B 73855166 5C148B76 557B2FDC
- FDC0262D 47EE78B8 2E0CE318 2FB5E2A3 FD7EA57D 331671D2 7DC0D417 CAAB6347
- 2A423B85 6FE0D321 072CACFA D092D5BC 6D186247
- quit
- dot11 syslog
- ip cef
- !
- !
- no ip dhcp use vrf connected
- ip dhcp excluded-address 192.168.100.1 192.168.100.99
- ip dhcp excluded-address 192.168.100.201 192.168.100.254
- !
- ip dhcp pool sdm-pool1
- network 192.168.100.0 255.255.255.0
- dns-server 192.168.100.2 82.179.70.4
- default-router 192.168.100.1
- !
- !
- no ip domain lookup
- ip domain name yourdomain.com
- ip name-server 82.179.70.4
- ip inspect name SDM_LOW cuseeme
- ip inspect name SDM_LOW dns
- ip inspect name SDM_LOW ftp
- ip inspect name SDM_LOW h323
- ip inspect name SDM_LOW https
- ip inspect name SDM_LOW icmp
- ip inspect name SDM_LOW imap
- ip inspect name SDM_LOW pop3
- ip inspect name SDM_LOW netshow
- ip inspect name SDM_LOW rcmd
- ip inspect name SDM_LOW realaudio
- ip inspect name SDM_LOW rtsp
- ip inspect name SDM_LOW esmtp
- ip inspect name SDM_LOW sqlnet
- ip inspect name SDM_LOW streamworks
- ip inspect name SDM_LOW tftp
- ip inspect name SDM_LOW tcp
- ip inspect name SDM_LOW udp
- ip inspect name SDM_LOW vdolive
- ip auth-proxy max-nodata-conns 3
- ip admission max-nodata-conns 3
- !
- multilink bundle-name authenticated
- parameter-map type regex sdm-regex-nonascii
- pattern [^\x00-\x80]
- !
- !
- username admin privilege 15 secret 5 $1$oyUA$6Sh4y0Ea27ZoWCqc93e1//
- !
- !
- crypto isakmp policy 1
- encr 3des
- authentication pre-share
- group 2
- !
- crypto isakmp policy 5
- encr 3des
- authentication pre-share
- group 2
- lifetime 28800
- crypto isakmp key dgecnsytbee address 195.182.150.191
- crypto isakmp key dgecnsytbe address 80.247.177.18
- crypto isakmp key dgecnsyttps address 194.85.161.147
- !
- crypto isakmp client configuration group testgroup
- key fkg7h4f3v6
- pool SDM_POOL_1
- netmask 255.255.255.0
- crypto isakmp profile sdm-ike-profile-1
- match identity group testgroup
- client authentication list sdm_vpn_xauth_ml_1
- isakmp authorization list sdm_vpn_group_ml_1
- client configuration address respond
- !
- !
- crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
- !
- crypto ipsec profile SDM_Profile1
- set isakmp-profile sdm-ike-profile-1
- !
- !
- crypto map SDM_CMAP_1 1 ipsec-isakmp
- description Tunnel to195.182.150.191
- set peer 195.182.150.191
- set transform-set ESP-3DES-SHA
- match address 102
- crypto map SDM_CMAP_1 2 ipsec-isakmp
- description Tunnel to80.247.177.18
- set peer 80.247.177.18
- set transform-set ESP-3DES-SHA
- match address 106
- crypto map SDM_CMAP_1 3 ipsec-isakmp
- description Tunnel to194.85.161.147
- set peer 194.85.161.147
- set transform-set ESP-3DES-SHA
- match address 114
- !
- archive
- log config
- hidekeys
- !
- !
- !
- !
- !
- interface Loopback0
- ip address 172.16.1.1 255.255.255.0
- !
- interface FastEthernet0
- !
- interface FastEthernet1
- !
- interface FastEthernet2
- !
- interface FastEthernet3
- !
- interface FastEthernet4
- description $FW_OUTSIDE$$ETH-LAN$
- ip address 77.234.220.150 255.255.255.252
- ip access-group 160 in
- ip nat outside
- ip inspect SDM_LOW out
- ip virtual-reassembly
- duplex auto
- speed auto
- crypto map SDM_CMAP_1
- !
- interface Vlan1
- description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$
- ip address 192.168.100.1 255.255.255.0
- no ip redirects
- no ip proxy-arp
- ip nat inside
- ip virtual-reassembly
- ip tcp adjust-mss 1452
- !
- ip local pool SDM_POOL_1 172.16.1.2 172.16.1.10
- ip forward-protocol nd
- ip route 0.0.0.0 0.0.0.0 77.234.220.149 permanent
- !
- !
- ip http server
- ip http authentication local
- ip http secure-server
- ip http timeout-policy idle 60 life 86400 requests 10000
- ip nat pool PAT 77.234.220.150 77.234.220.150 netmask 255.255.255.252
- ip nat inside source route-map SDM_RMAP_4 interface FastEthernet4 overload
- !
- access-list 1 remark SDM_ACL Category=2
- access-list 1 permit 192.168.100.0 0.0.0.255
- access-list 100 remark SDM_ACL Category=128
- access-list 100 permit ip host 255.255.255.255 any
- access-list 100 permit ip 127.0.0.0 0.255.255.255 any
- access-list 100 permit ip 82.179.71.0 0.0.0.255 any
- access-list 101 permit ip host 217.148.211.3 any
- access-list 101 permit ip host 94.125.3.57 any
- access-list 101 permit ip host 194.85.161.146 any
- access-list 102 remark SDM_ACL Category=4
- access-list 102 remark IPSec Rule
- access-list 102 permit ip 192.168.100.0 0.0.0.255 192.168.0.0 0.0.0.255
- access-list 103 remark SDM_ACL Category=128
- access-list 103 permit ip host 195.182.150.191 any
- access-list 103 permit ip host 80.247.177.18 any
- access-list 103 permit ip host 194.85.161.147 any
- access-list 104 remark SDM_ACL Category=0
- access-list 104 remark IPSec Rule
- access-list 104 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 104 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 104 permit ip 192.168.10.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 106 remark SDM_ACL Category=4
- access-list 106 remark IPSec Rule
- access-list 106 permit ip 192.168.100.0 0.0.0.255 192.168.121.0 0.0.0.255
- access-list 107 remark SDM_ACL Category=0
- access-list 107 remark IPSec Rule
- access-list 107 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 107 remark IPSec Rule
- access-list 107 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 108 remark SDM_ACL Category=4
- access-list 108 permit ip 192.168.100.0 0.0.0.255 any
- access-list 109 remark SDM_ACL Category=4
- access-list 109 permit ip 192.168.100.0 0.0.0.255 any
- access-list 110 remark SDM_ACL Category=4
- access-list 110 permit ip 192.168.100.0 0.0.0.255 any
- access-list 111 remark SDM_ACL Category=0
- access-list 111 remark IPSec Rule
- access-list 111 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 111 remark IPSec Rule
- access-list 111 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 112 remark SDM_ACL Category=0
- access-list 112 remark IPSec Rule
- access-list 112 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 112 remark IPSec Rule
- access-list 112 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 113 deny ip 192.168.100.0 0.0.0.255 192.168.0.0 0.0.0.255
- access-list 113 deny ip 192.168.100.0 0.0.0.255 192.168.121.0 0.0.0.255
- access-list 113 deny ip 192.168.100.0 0.0.0.255 192.168.10.0 0.0.0.255
- access-list 113 permit ip 192.168.100.0 0.0.0.255 any
- access-list 114 permit ip 192.168.100.0 0.0.0.255 192.168.10.0 0.0.0.255
- access-list 150 permit ip any any
- access-list 160 permit tcp host 217.148.211.3 any eq 22
- access-list 160 permit tcp host 217.148.211.3 any eq 443
- access-list 160 permit ip host 94.125.3.57 any
- access-list 160 permit udp any any eq isakmp
- access-list 160 permit ahp any any
- access-list 160 permit esp any any
- access-list 160 permit udp any any eq non500-isakmp
- access-list 160 permit icmp any any echo-reply
- access-list 160 permit icmp any any time-exceeded
- access-list 160 permit icmp any any unreachable
- access-list 160 permit ip 192.168.10.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 160 permit ip 192.168.0.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 160 permit ip 192.168.121.0 0.0.0.255 192.168.100.0 0.0.0.255
- access-list 160 deny ip 10.0.0.0 0.255.255.255 any
- access-list 160 deny ip 172.16.0.0 0.15.255.255 any
- access-list 160 deny ip 192.168.0.0 0.0.255.255 any
- access-list 160 deny ip 127.0.0.0 0.255.255.255 any
- access-list 160 deny ip host 255.255.255.255 any
- access-list 160 deny ip host 0.0.0.0 any
- access-list 160 deny ip any any log
- no cdp run
- !
- !
- !
- route-map SDM_RMAP_4 permit 1
- match ip address 113
- !
- !
- control-plane
- !
- !
- line con 0
- no modem enable
- line aux 0
- line vty 0 4
- privilege level 15
- transport input telnet ssh
- !
- scheduler max-task-time 5000
- end
- smarttech# logo
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement