API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 18th, 2019
265
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.88 KB | None | 0 0
raw download clone embed print report
  1. 21:10:13 Muffin:~$more /tftpboot/ilebeaute-mskmts-ivpn-11-confg
  2.  
  3. !
  4. ! Last configuration change at 06:22:05 MSK Tue Feb 26 2019 by kzalyank
  5. ! NVRAM config last updated at 06:22:08 MSK Tue Feb 26 2019 by kzalyank
  6. !
  7. version 15.4
  8. service nagle
  9. no service pad
  10. service tcp-keepalives-in
  11. service tcp-keepalives-out
  12. service timestamps debug datetime localtime show-timezone
  13. service timestamps log datetime localtime show-timezone
  14. service password-encryption
  15. service linenumber
  16. service sequence-numbers
  17. !
  18. hostname ilebeaute-mskmts-IVPN-11
  19. !
  20. boot-start-marker
  21. boot system flash c800-universalk9-mz.SPA.154-3.M10.bin
  22. boot-end-marker
  23. !
  24. aqm-register-fnf
  25. !
  26. logging buffered 16000
  27. no logging console
  28. enable secret 5 $1$.Ocb$3eCYIaYwRjksQyQG0KCAk.
  29. !
  30. aaa new-model
  31. !
  32. !
  33. aaa authentication fail-message CAuthentication Fails, Please try again
  34. aaa authentication login default group tacacs+ local
  35. aaa authentication login CONSOLE group tacacs+ enable
  36. aaa authorization exec default group tacacs+ none
  37. aaa authorization commands 1 default group tacacs+ none
  38. aaa authorization commands 15 default group tacacs+ none
  39. aaa authorization network default none
  40. !
  41. !
  42. !
  43. !
  44. !
  45. aaa session-id common
  46. clock timezone MSK 3 0
  47. !
  48. crypto pki trustpoint CA
  49. enrollment terminal pem
  50. crl cache delete-after 10
  51. revocation-check crl
  52. !
  53. crypto pki trustpoint Ile_De_Beaute23
  54. crl cache delete-after 10
  55. revocation-check crl
  56. rsakeypair Ile_De_Beaute23
  57. !
  58. !
  59. crypto pki certificate chain CA
  60. certificate ca 00853578AA658FC223
  61. 30820455 3082033D A0030201 02020900 853578AA 658FC223 300D0609 2A864886
  62. F70D0101 05050030 8184310B 30090603 55040613 02525531 0F300D06 03550407
  63. 13064D6F 73636F77 31133011 06035504 0A130A45 7175616E 74204C4C 43312130
  64. 1F060355 040B1318 4F72616E 67652042 7573696E 65737320 53657276 69636573
  65. 312C302A 06035504 0313234F 72616E67 65204275 73696E65 73732053 65727669
  66. 63657273 20527573 73696120 4341301E 170D3132 30373234 30383532 31395A17
  67. 0D343230 37323330 38353231 395A3081 84310B30 09060355 04061302 5255310F
  68. 300D0603 55040713 064D6F73 636F7731 13301106 0355040A 130A4571 75616E74
  69. 204C4C43 3121301F 06035504 0B13184F 72616E67 65204275 73696E65 73732053
  70. 65727669 63657331 2C302A06 03550403 13234F72 616E6765 20427573 696E6573
  71. 73205365 72766963 65727320 52757373 69612043 41308201 22300D06 092A8648
  72. 86F70D01 01010500 0382010F 00308201 0A028201 0100BFD3 83D3F017 8BC00A0D
  73. 7287C4C8 8746C54D A32BD017 D2B7CF83 EFFE2BAD 98313DE7 2BC09929 BF0FB9BF
  74. 978F1C3C C04F5D27 0849351F 0FBBBF7B EB4062C8 0AD4917B E3835DE0 07ED177E
  75. 5F3818FC 4A6B7C17 7F75C47E 65A06C01 4DF675C0 605F3B79 8BE4DD0C FA6F1EF1
  76. 43D593A2 460DE843 6E27774E C9D2ADC8 2D4A3B1C 40821939 D6C424C6 21CF1D97
  77. 8A6B3105 3D2AD5E5 C327B1FE 1C042433 B942AB89 959220AD F0C1AFDE 29FC9023
  78. 4C40D24F A72F514D 973B7251 0A76EF7F D6E113DC EF5DA49E D83D5B38 6FBE9F47
  79. 52314043 EED45C28 6230F67B 18C92C79 52B04766 1B9EEF89 39DA3046 3981CE0B
  80. 2F32696E F50EF6F7 381E8C73 AA593160 BC14ED00 14DB0203 010001A3 81C73081
  81. C4300C06 03551D13 04053003 0101FF30 81A30603 551D2304 819B3081 98A1818A
  82. A4818730 8184310B 30090603 55040613 02525531 0F300D06 03550407 13064D6F
  83. 73636F77 31133011 06035504 0A130A45 7175616E 74204C4C 43312130 1F060355
  84. 040B1318 4F72616E 67652042 7573696E 65737320 53657276 69636573 312C302A
  85. 06035504 0313234F 72616E67 65204275 73696E65 73732053 65727669 63657273
  86. 20527573 73696120 43418209 00853578 AA658FC2 23300E06 03551D0F 0101FF04
  87. 04030201 06300D06 092A8648 86F70D01 01050500 03820101 00303428 A403EF42
  88. 33CE7793 27CF1F63 14B03BD7 6626EC1F 4A095354 A9398203 5997E50E 4B1EA795
  89. 0A9E603F C4ABE545 E041AFBC 9664C111 A1D5F9AC E6F25055 D7D9A5DC 0B51FC82
  90. 42D388D4 14B79640 FBD6C48F 22410632 89890365 21DA0260 8430D741 9C7DDE2E
  91. 9118DE43 7B4E45D3 64B4488E 5EA5474C 055D6E68 E75F9CA9 3302E78C 9D7DDB8C
  92. 32EB4F4E 4439FCAB 3181A7B1 B15A5B21 DE84630D EC12BC43 0BD809A6 C69A25B3
  93. 1E6D9F2D 6DD98354 544D019C B60D3F9E 62D5C7F2 D912A786 CE9F866E 473839BD
  94. 2C4F2E14 8C75E18E 09593B80 53FBB183 42A07A9C F5F1026D 676B1957 4D3BEA3F
  95. 9B8E8BDB 0A9E74CE 9E122D1C 8C6362EB 1BBD203E B53541F3 91
  96. quit
  97. crypto pki certificate chain Ile_De_Beaute23
  98. certificate 0167
  99. 308203FE 308202E6 A0030201 02020201 67300D06 092A8648 86F70D01 01050500
  100. 30818731 0B300906 03550406 13025255 310F300D 06035504 070C064D 6F73636F
  101. 77311330 11060355 040A0C0A 45717561 6E74204C 4C433121 301F0603 55040B0C
  102. 184F7261 6E676520 42757369 6E657373 20536572 76696365 73312F30 2D060355
  103. 04030C26 4F72616E 67652042 7573696E 65737320 53657276 69636572 73205275
  104. 73736961 20737562 4341301E 170D3136 30343134 31323138 32375A17 0D323130
  105. 34313331 32313832 375A3075 310B3009 06035504 06130252 55310F30 0D060355
  106. 04070C06 4D6F7363 6F773113 30110603 55040A0C 0A457175 616E7420 4C4C4331
  107. 1D301B06 0355040B 0C144956 504E5F49 6C655F44 655F4265 61757465 32333121
  108. 301F0603 5504030C 18696C65 62656175 74652D6D 736B6D74 732D4956 504E2D31
  109. 31308201 22300D06 092A8648 86F70D01 01010500 0382010F 00308201 0A028201
  110. 0100C58E DFB0B97B 5977580E 392D5340 8199C293 D30F6228 57568930 D0368AA5
  111. E3FA0BBE 542439E8 7F7ACAA0 3088ED3A BAE30B7F C1A186B2 61008028 F411B815
  112. E91D3ED6 F05C87C8 BE5BC155 A4DF2120 97E978FB E7B458D1 86BB451C 336DA55C
  113. 3F2D3538 F5DFBA89 AEA63C99 546CB938 56724870 032F1AE8 1F19A44B 63EB929E
  114. DF57F5A8 46D721B6 73EA8571 7F7390CE C9887FF6 188C5AF9 B421F416 FEA70A67
  115. 59437D6A DEFCAB77 0591AD34 D70C6FE5 37C48F44 931F5B20 A7D0C3B6 F30CB182
  116. 25C9A64E DB4EF8DF 90A72DDA 1BAEC2AC 28CCD620 BCF5FD7F E5F4490B 76C60C3F
  117. 24DAF58C 3FA4CE85 725B108D ED86DF95 6DAAF6BF 68B14B5B 9FCE33A9 D70E0FD9
  118. C0D10203 010001A3 81843081 81300906 03551D13 04023000 30330603 551D1F04
  119. 2C302A30 28A026A0 24862268 7474703A 2F2F6372 6C2E7265 6D6F7465 2E697076
  120. 706E2E72 752F6F62 732E6372 6C303F06 09608648 0186F842 010D0432 16304F72
  121. 616E6765 20427573 696E6573 73205365 72766963 65732049 56504E20 526F7574
  122. 65722063 65727469 66696361 7465300D 06092A86 4886F70D 01010505 00038201
  123. 01007612 782CC451 5A002037 5915EC5E F6F4A5BA 14441552 3E2F851E D124587B
  124. 8BD7FE7A 219F8264 D0C52BC5 B9DBD601 9E97DD9F 31AA96C1 21A89E4F 8165E815
  125. 256AC7CC D8E91563 068BF0EF 8E5218E3 A7E373EC 60AC72D8 A10F42A5 9B4AF09B
  126. B35272FC 3113D60A 919303CD 277D6C4C 2CEB1233 24106212 0904290C A122D967
  127. 3047C845 D54BFF14 BA26F278 CDA4B772 A10C385D BD1CC32B A3A3B1A3 5AB2CCCA
  128. 9BAD9008 DBC10C35 50B2D021 CAFD26C1 2A3E6A3A F285842F 565493EA 2A6EE927
  129. 758A62EB 5BDBA983 6232873A 4483862B 77C6294C C7338ED3 4D5A953B 3F92169B
  130. B7E026B5 D0C17DE9 6D0D3C02 7C546A35 5F4382E0 F80E5C5E 9BE603C7 85965195 9541
  131. quit
  132. certificate ca 00B10559F6754C9300
  133. 30820490 30820378 A0030201 02020900 B10559F6 754C9300 300D0609 2A864886
  134. F70D0101 05050030 8184310B 30090603 55040613 02525531 0F300D06 03550407
  135. 13064D6F 73636F77 31133011 06035504 0A130A45 7175616E 74204C4C 43312130
  136. 1F060355 040B1318 4F72616E 67652042 7573696E 65737320 53657276 69636573
  137. 312C302A 06035504 0313234F 72616E67 65204275 73696E65 73732053 65727669
  138. 63657273 20527573 73696120 4341301E 170D3132 30373234 30393236 31375A17
  139. 0D323730 37323430 39323631 375A3081 87310B30 09060355 04061302 5255310F
  140. 300D0603 5504070C 064D6F73 636F7731 13301106 0355040A 0C0A4571 75616E74
  141. 204C4C43 3121301F 06035504 0B0C184F 72616E67 65204275 73696E65 73732053
  142. 65727669 63657331 2F302D06 03550403 0C264F72 616E6765 20427573 696E6573
  143. 73205365 72766963 65727320 52757373 69612073 75624341 30820122 300D0609
  144. 2A864886 F70D0101 01050003 82010F00 3082010A 02820101 00C17F49 BA09BF4D
  145. 2EB44FC4 EEE27E89 569B6C62 50DC3350 89A3A2C6 32EB461A B96838C3 11CB70C2
  146. 5AA87448 56C71FEF 5F982654 170C2284 854F4D99 B76FF976 CE722BDA BF1D1E5F
  147. BC6155D7 AA587341 BC03A130 71CF2832 65F3CFEE 206ED77D A79C728E F56247EC
  148. 1D6A80B4 A3461373 E99EF747 A923DDA4 AEC2DB14 82EAE3F4 D1E81F34 C244AECF
  149. DC10F3DC F6108F9F 5C57DFE8 0A22D8B0 F1A12B3C 9466B195 45D725DD A2557FAF
  150. F83D8F00 229E4FDD 3ADD7ACE F8548CD2 42FF9083 49A1CBEE C2DCABE4 B641BA8C
  151. AC440C2E E010DFE4 F5D32F0A F175A0C7 A951A2F9 3A6118EE B15EFABD A3A8074B
  152. 47A403D6 2A1FC416 FC8143EF 7B1B84C2 B50DC82C 2770D6B9 8B020301 0001A381
  153. FF3081FC 300F0603 551D1304 08300601 01FF0201 00303306 03551D1F 042C302A
  154. 3028A026 A0248622 68747470 3A2F2F63 726C2E72 656D6F74 652E6970 76706E2E
  155. 72752F6F 62732E63 726C300E 0603551D 0F0101FF 04040302 01063081 A3060355
  156. 1D230481 9B308198 A1818AA4 81873081 84310B30 09060355 04061302 5255310F
  157. 300D0603 55040713 064D6F73 636F7731 13301106 0355040A 130A4571 75616E74
  158. 204C4C43 3121301F 06035504 0B13184F 72616E67 65204275 73696E65 73732053
  159. 65727669 63657331 2C302A06 03550403 13234F72 616E6765 20427573 696E6573
  160. 73205365 72766963 65727320 52757373 69612043 41820900 853578AA 658FC223
  161. 300D0609 2A864886 F70D0101 05050003 82010100 7A0E1596 AF1D0B7C 9D05D9A3
  162. 500EEE91 3C624FDE E08A230B 28F1B980 33F9ACC3 561231BC AC72A251 29F06BA7
  163. BF30044E 2EBCC07D DD31FAD9 14B4C42A 3612C3A0 895A5F7D EBBCE72D 1636B182
  164. 28CCFDE1 28489073 5C2687C2 246A183C 069D9AF4 32A6CA35 C7C463AA F5B9F2A7
  165. 3AB9CC18 1F472EFD F0036FA6 72833C2B F86946C4 4CC5472A 34D6B68B 991B9A5C
  166. 6CF91628 426A07CF D2E2BFE9 51C396B9 B16FA769 C5BC57D4 6B8551DC 5FD95A89
  167. 025A02CB A196311A A5DBA128 5058F39C C0A678EB 3B83824A 2A924D6F B0F83E17
  168. 8CFD576D EE535961 562C5A17 6D48FDD8 541BD4A3 19C02A13 F3FC6472 46AC8DDD
  169. 54CCC40E 39FE1A34 EC67386C 0CC25F6B C7003C90
  170. quit
  171. no ip source-route
  172. no ip gratuitous-arps
  173. !
  174. !
  175. !
  176. !
  177. !
  178. !
  179. !
  180. !
  181.  
  182.  
  183. !
  184. no ip dhcp conflict logging
  185. !
  186. !
  187. !
  188. no ip bootp server
  189. no ip domain lookup
  190. ip host crl.remote.ipvpn.ru 194.84.23.2
  191. ip name-server 212.44.130.6
  192. ip name-server 194.85.128.10
  193. ip cef
  194. no ipv6 cef
  195. !
  196. !
  197. !
  198. !
  199. !
  200. multilink bundle-name authenticated
  201. !
  202. !
  203. !
  204. !
  205. !
  206. !
  207. !
  208. !
  209. cts logging verbose
  210. license udi pid C881-K9 sn FCZ1921703C
  211. !
  212. !
  213. !
  214. no spanning-tree vlan 99
  215. no spanning-tree vlan 999
  216. username helpdesk secret 5 $1$6jpF$3nymlclU/48xK62bV4XsH.
  217. !
  218. !
  219. !
  220. !
  221. !
  222. track 100 list boolean and
  223. object 101
  224. object 102
  225. object 103
  226. object 104
  227. !
  228. track 101 stub-object
  229. default-state up
  230. !
  231. track 102 stub-object
  232. default-state up
  233. !
  234. track 103 stub-object
  235. default-state up
  236. !
  237. track 104 stub-object
  238. default-state up
  239. !
  240. track 200 list boolean and
  241. object 201
  242. object 202
  243. object 203
  244. object 204
  245. !
  246. track 201 stub-object
  247. default-state up
  248. !
  249. track 202 stub-object
  250. default-state up
  251. !
  252. track 203 stub-object
  253. default-state up
  254. !
  255. track 204 stub-object
  256. default-state up
  257. !
  258. track 300 stub-object
  259. default-state up
  260. !
  261. !
  262. !
  263. crypto isakmp policy 10
  264. encr aes
  265. group 2
  266. !
  267. !
  268. crypto ipsec transform-set DMVPN_TRANS esp-aes esp-sha-hmac
  269. mode tunnel
  270. !
  271. crypto ipsec profile IPSEC_PROF_DMVPN
  272. set transform-set DMVPN_TRANS
  273. !
  274. !
  275. !
  276. !
  277. !
  278. !
  279. !
  280. !
  281. interface Loopback0
  282. description --- #0021488 /CID-006-317 /mrs ---
  283. ip address 172.23.151.22 255.255.255.255
  284. !
  285. interface Tunnel1
  286. description --- To Hub1 ---
  287. bandwidth 2000
  288. ip address 57.199.228.22 255.255.255.0
  289. no ip redirects
  290. ip mtu 1400
  291. no ip split-horizon eigrp 1
  292. ip nhrp authentication !Q2w#E4r
  293. ip nhrp map multicast 194.84.45.74
  294. ip nhrp map 57.199.228.1 194.84.45.74
  295. ip nhrp network-id 154
  296. ip nhrp holdtime 300
  297. ip nhrp nhs 57.199.228.1
  298. ip tcp adjust-mss 1360
  299. tunnel source FastEthernet4.1000
  300. tunnel mode gre multipoint
  301. tunnel key 154
  302. tunnel protection ipsec profile IPSEC_PROF_DMVPN shared
  303. !
  304. interface Tunnel2
  305. description --- To Hub2 ---
  306. bandwidth 1000
  307. ip address 57.199.229.22 255.255.255.0
  308. no ip redirects
  309. ip mtu 1400
  310. no ip split-horizon eigrp 1
  311. ip nhrp authentication !Q2w#E4r
  312. ip nhrp map multicast 194.84.151.74
  313. ip nhrp map 57.199.229.1 194.84.151.74
  314. ip nhrp network-id 254
  315. ip nhrp holdtime 300
  316. ip nhrp nhs 57.199.229.1
  317. ip tcp adjust-mss 1360
  318. tunnel source FastEthernet4.1000
  319. tunnel mode gre multipoint
  320. tunnel key 254
  321. tunnel protection ipsec profile IPSEC_PROF_DMVPN shared
  322. !
  323. interface FastEthernet0
  324. description --- LAN_2,LAN_3 ----
  325. switchport trunk allowed vlan 1-3,1002-1005
  326. switchport mode trunk
  327. no ip address
  328. !
  329. interface FastEthernet1
  330. description --- LAN_2,LAN_3 ----
  331. switchport access vlan 99
  332. no ip address
  333. !
  334. interface FastEthernet2
  335. description --- LAN_2,LAN_3 ----
  336. switchport trunk allowed vlan 1-3,1002-1005
  337. switchport mode trunk
  338. no ip address
  339. !
  340. interface FastEthernet3
  341. description --- ISP2 ---
  342. switchport access vlan 999
  343. no ip address
  344. load-interval 30
  345. !
  346. interface FastEthernet4
  347. description --- WAN port ---
  348. no ip address
  349. duplex auto
  350. speed auto
  351. !
  352. interface FastEthernet4.1000
  353. description --- WAN 217.69.222.38 ---
  354. encapsulation dot1Q 1000 native
  355. ip address 10.31.186.2 255.255.255.252
  356. !
  357. interface FastEthernet4.1001
  358. description --- LAN_1 ---
  359. encapsulation dot1Q 1001
  360. ip address 10.161.0.1 255.255.255.248
  361. ip access-group Sephora_Interconnection out
  362. !
  363. interface Vlan1
  364. no ip address
  365. shutdown
  366. !
  367. interface Vlan2
  368. description --- LAN_2 ---
  369. ip address 10.160.35.190 255.255.255.192
  370. ip flow ingress
  371. ip flow egress
  372. !
  373. interface Vlan3
  374. description --- LAN_3 ---
  375. ip address 10.160.35.254 255.255.255.192
  376. ip flow ingress
  377. ip flow egress
  378. !
  379. interface Vlan99
  380. description --- #0021488 / 753443 ---
  381. ip address 10.235.35.190 255.255.255.248
  382. !
  383. interface Vlan999
  384. description --- ISP2 ---
  385. ip address 195.239.2.30 255.255.255.252
  386. !
  387. !
  388. router eigrp 1
  389. network 10.160.0.0 0.0.255.255
  390. network 10.235.35.184 0.0.0.7
  391. network 57.199.228.0 0.0.0.255
  392. network 57.199.229.0 0.0.0.255
  393. network 172.23.151.0 0.0.0.255
  394. redistribute static route-map STATIC-TO-EIGRP
  395. passive-interface default
  396. no passive-interface Tunnel1
  397. no passive-interface Tunnel2
  398. eigrp stub connected static
  399. !
  400. ip forward-protocol nd
  401. no ip http server
  402. no ip http secure-server
  403. !
  404. ip flow-export source Vlan2
  405. ip flow-export version 5
  406. ip flow-export destination 10.160.3.7 9995
  407. !
  408. ip tftp source-interface Loopback0
  409. ip route 194.33.81.1 255.255.255.255 10.31.186.1 name ntp track 300
  410. ip route 194.84.23.2 255.255.255.255 10.31.186.1 name ServerSertifikat track 300
  411. ip route 194.84.45.74 255.255.255.255 10.31.186.1 name LoopBackTunnel1 track 300
  412. ip route 194.84.77.20 255.255.255.255 10.31.186.1 name ntp2 track 300
  413. ip route 194.84.151.74 255.255.255.255 10.31.186.1 name LoopBackTunnel2 track 300
  414. ip route 212.176.2.22 255.255.255.255 10.31.186.1 name NRI track 300
  415. ip route 10.160.35.128 255.255.255.192 10.235.35.187
  416. ip route 10.234.35.128 255.255.255.192 10.235.35.187
  417. ip route 10.235.35.128 255.255.255.192 10.235.35.187
  418. ip route 77.108.96.194 255.255.255.255 195.239.2.29 100 name clients_icmp
  419. ip route 87.229.187.170 255.255.255.255 195.239.2.29 100 name clients_icmp
  420. ip route 172.31.186.0 255.255.255.240 10.161.0.2
  421. ip route 172.31.186.16 255.255.255.240 10.161.0.2
  422. ip route 172.31.186.32 255.255.255.224 10.161.0.2
  423. ip route 185.110.84.75 255.255.255.255 195.239.2.29 100 name clients_icmp
  424. ip route 192.168.186.0 255.255.255.128 10.161.0.2
  425. ip route 192.168.186.128 255.255.255.128 10.161.0.2
  426. ip route 193.232.88.0 255.255.255.0 195.239.2.29 100 name management
  427. ip route 193.232.88.0 255.255.255.0 10.31.186.1 200 name management
  428. ip route 194.33.81.1 255.255.255.255 195.239.2.29 100 name ntp
  429. ip route 194.84.23.2 255.255.255.255 195.239.2.29 100 name ServerSertifikat
  430. ip route 194.84.45.74 255.255.255.255 195.239.2.29 100 name LoopBackTunnel1
  431. ip route 194.84.77.20 255.255.255.255 195.239.2.29 100 name ntp2
  432. ip route 194.84.151.74 255.255.255.255 195.239.2.29 100 name LoopBackTunnel2
  433. ip route 195.151.232.2 255.255.255.255 10.31.186.1 name TRACK1
  434. ip route 195.151.232.13 255.255.255.255 195.239.2.29 name TRACK2
  435. ip route 212.176.2.22 255.255.255.255 195.239.2.29 100 name NRI
  436. ip route 212.176.2.23 255.255.255.255 195.239.2.29 100 name NMS-ribugin,Zabbix
  437. ip tacacs source-interface Loopback0
  438. ip scp server enable
  439. !
  440. ip access-list extended BU-BREAK
  441. deny icmp host 195.151.232.13 host 195.239.2.30
  442. permit ip any any
  443. ip access-list extended MAIN-BREAK
  444. deny icmp host 195.151.232.2 host 10.31.186.2
  445. permit ip any any
  446. ip access-list extended Sephora_Interconnection
  447. permit icmp any any echo
  448. permit icmp any any echo-reply
  449. permit icmp any any time-exceeded
  450. permit icmp any any unreachable
  451. permit icmp any any traceroute
  452. permit udp any any range 33434 33600
  453. permit tcp 10.160.35.128 0.0.0.63 host 192.168.186.139 eq www 443
  454. permit tcp 10.160.35.128 0.0.0.63 172.31.186.32 0.0.0.31 eq www 443
  455. permit tcp 10.160.35.128 0.0.0.63 172.31.186.0 0.0.0.15 eq 8016 8116 8200 8201 10019
  456. permit tcp 10.160.35.128 0.0.0.63 eq www 443 9100 172.31.186.16 0.0.0.15
  457. permit udp 10.160.35.128 0.0.0.63 eq snmp 192.168.186.128 0.0.0.127
  458. permit tcp 10.160.35.128 0.0.0.63 eq 9100 9220 192.168.186.128 0.0.0.127
  459. !
  460. !
  461. ip prefix-list STATIC seq 5 permit 10.160.35.128/26
  462. ip prefix-list STATIC seq 10 permit 10.234.35.128/26
  463. ip prefix-list STATIC seq 15 permit 10.235.35.128/26
  464. ip sla 1
  465. icmp-jitter 195.151.232.2 source-ip 10.31.186.2 num-packets 20 interval 50
  466. threshold 1000
  467. timeout 1000
  468. ip sla schedule 1 life forever start-time now
  469. ip sla 2
  470. icmp-jitter 195.151.232.13 source-ip 195.239.2.30 num-packets 20 interval 50
  471. threshold 1000
  472. timeout 1000
  473. ip sla schedule 2 life forever start-time now
  474. ip sla reaction-configuration 1 react rtt threshold-value 200 150 threshold-type consecutive 3
  475. ip sla reaction-configuration 1 react jitterAvg threshold-value 50 30 threshold-type consecutive 3
  476. ip sla reaction-configuration 1 react packetLoss threshold-value 3 2 threshold-type consecutive 3
  477. ip sla reaction-configuration 1 react timeout threshold-type immediate
  478. ip sla reaction-configuration 2 react rtt threshold-value 200 150 threshold-type consecutive 3
  479. ip sla reaction-configuration 2 react jitterAvg threshold-value 50 30 threshold-type consecutive 3
  480. ip sla reaction-configuration 2 react packetLoss threshold-value 3 2 threshold-type consecutive 3
  481. ip sla reaction-configuration 2 react timeout threshold-type immediate
  482. ip sla enable reaction-alerts
  483. ip sla responder
  484. logging trap notifications
  485. logging facility local5
  486. logging source-interface Loopback0
  487. logging host 172.18.128.255
  488. logging host 172.18.128.244
  489. !
  490. route-map STATIC-TO-EIGRP permit 10
  491. match ip address prefix-list STATIC
  492. !
  493. snmp-server community public RO 7
  494. snmp-server ifindex persist
  495. snmp-server location ILE DE BEAUTE (Moscow, Kaluzhskoe shosse 21km.)
  496. snmp-server contact OBS (Moscow) (+7-495-620-9500)
  497. snmp-server enable traps tty
  498. snmp-server host 172.18.128.244 public
  499. snmp-server host 172.18.128.255 public
  500. tacacs-server host 172.18.128.255
  501. tacacs-server directed-request
  502. tacacs-server key 7 0725305B190455405E4B0F0A0B
  503. access-list 7 permit 195.151.60.215
  504. access-list 7 remark List of MRS Telnet and SNMP RO Access
  505. access-list 7 permit 172.18.128.254
  506. access-list 7 permit 172.18.128.255
  507. access-list 7 permit 172.18.128.253
  508. access-list 7 permit 172.18.128.244
  509. access-list 7 permit 172.23.101.5
  510. access-list 7 permit 193.232.88.0 0.0.0.255
  511. access-list 24 remark Deny Outgoing VTY Sessions
  512. access-list 24 deny any
  513. !
  514. !
  515. !
  516. control-plane
  517. !
  518. !
  519. mgcp behavior rsip-range tgcp-only
  520. mgcp behavior comedia-role none
  521. mgcp behavior comedia-check-media-src disable
  522. mgcp behavior comedia-sdp-force disable
  523. !
  524. mgcp profile default
  525. !
  526. !
  527. !
  528. !
  529. !
  530. !
  531. vstack
  532. alias exec crb show interfaces crb | i
  533. alias exec c configure terminal
  534. alias exec bri show ip interface brief
  535. alias exec wrn copy running-config tftp://172.18.128.255/ilebeaute-mskmts-ivpn-11-confg
  536. privilege exec level 0 traceroute ip
  537. privilege exec level 0 traceroute
  538. privilege exec level 0 ping ip
  539. privilege exec level 0 ping
  540. privilege exec level 15 show access-lists
  541. privilege exec level 15 show ip access-lists
  542. privilege exec level 1 show ip
  543. privilege exec level 1 show logging
  544. privilege exec level 1 show
  545. privilege exec level 0 clear counters
  546. privilege exec level 0 clear
  547. banner motd
  548.  
  549. #### ##### ####
  550. ## ## ## ## ## ##
  551. ## ## ##### #### ##### ##### #### ## ## ##
  552. ## ## ### ## ## ### ## ## ## ## ## #### ####
  553. ## ## ## ##### ## ## ### ###### ## ## ##
  554. ## ## ## ## ## ## ## ## ## ## ## ## ##
  555. #### ## ##### ## ## #### #### ##### ####
  556. ## ##
  557. rus-conf.corp@list2.orange.com #### [2016]
  558. __________________________________________________________
  559.  
  560. Attention! Access to and usage of this system is restricted
  561. to authorized personnel only! Violators will be prosecuted
  562. to the fullest extent of both civil and criminal law.
  563.  
  564. Please Call to Orange 8 800 500 5 500, before making any
  565. action with this device.
  566. __________________________________________________________
  567.  
  568. !
  569. line con 0
  570. access-class 24 out
  571. logging synchronous
  572. login authentication CONSOLE
  573. no modem enable
  574. history size 256
  575. transport preferred none
  576. transport output none
  577. line aux 0
  578. access-class 7 in
  579. access-class 24 out
  580. logging synchronous
  581. login authentication CONSOLE
  582. history size 256
  583. transport input telnet
  584. line vty 0 4
  585. access-class 7 in
  586. exec-timeout 5 0
  587. logging synchronous
  588. history size 256
  589. transport preferred none
  590. transport input telnet ssh
  591. !
  592. scheduler allocate 20000 1000
  593. ntp source Loopback0
  594. ntp server 172.18.128.189
  595. !
  596. !
  597. event manager session cli username "helpdesk" privilege 15
  598. event manager applet IPSLA-Main-Status-RTT
  599. event ipsla operation-id 1 reaction-type rtt
  600. action 1 if $_ipsla_condition eq "Occurred"
  601. action 2 track set 101 state down
  602. action 3 else
  603. action 4 track set 101 state up
  604. action 5 end
  605. event manager applet IPSLA-Main-Status-Jitter
  606. event ipsla operation-id 1 reaction-type maxOfNegativeDS
  607. action 1 if $_ipsla_condition eq "Occurred"
  608. action 2 track set 102 state down
  609. action 3 else
  610. action 4 track set 102 state up
  611. action 5 end
  612. event manager applet IPSLA-Main-Status-Loss
  613. event ipsla operation-id 1 reaction-type packetLossSD
  614. action 1 if $_ipsla_condition eq "Occurred"
  615. action 2 track set 103 state down
  616. action 3 else
  617. action 4 track set 103 state up
  618. action 5 end
  619. event manager applet IPSLA-Main-Status-Timeout
  620. event ipsla operation-id 1 reaction-type timeout
  621. action 1 if $_ipsla_condition eq "Occurred"
  622. action 2 track set 104 state down
  623. action 3 else
  624. action 4 track set 104 state up
  625. action 5 end
  626. event manager applet IPSLA-BU-Status-RTT
  627. event ipsla operation-id 2 reaction-type rtt
  628. action 1 if $_ipsla_condition eq "Occurred"
  629. action 2 track set 201 state down
  630. action 3 else
  631. action 4 track set 201 state up
  632. action 5 end
  633. event manager applet IPSLA-BU-Status-Jitter
  634. event ipsla operation-id 2 reaction-type maxOfNegativeDS
  635. action 1 if $_ipsla_condition eq "Occurred"
  636. action 2 track set 202 state down
  637. action 3 else
  638. action 4 track set 202 state up
  639. action 5 end
  640. event manager applet IPSLA-BU-Status-Loss
  641. event ipsla operation-id 2 reaction-type packetLossSD
  642. action 1 if $_ipsla_condition eq "Occurred"
  643. action 2 track set 203 state down
  644. action 3 else
  645. action 4 track set 203 state up
  646. action 5 end
  647. event manager applet IPSLA-BU-Status-Timeout
  648. event ipsla operation-id 2 reaction-type timeout
  649. action 1 if $_ipsla_condition eq "Occurred"
  650. action 2 track set 204 state down
  651. action 3 else
  652. action 4 track set 204 state up
  653. action 5 end
  654. event manager applet IPSLA-switch-to-Main authorization bypass
  655. event track 100 state up
  656. trigger occurs 1
  657. action 00 syslog msg "Primary link Up"
  658. action 01 syslog msg "Switch to Main"
  659. action 02 cli command "en"
  660. action 03 cli command "conf t"
  661. action 04 cli command "int range tu1-2"
  662. action 05 cli command "shut"
  663. action 06 cli command "no tunnel source vlan 999"
  664. action 07 cli command "tunnel source Fa4.1000"
  665. action 08 cli command "no shut"
  666. action 09 cli command "end"
  667. action 10 track set 300 state up
  668. event manager applet IPSLA-switch-to-BU authorization bypass
  669. event tag 1 track 100 state down
  670. trigger occurs 1
  671. action 00 syslog msg "Primary link down"
  672. action 01 track read 200
  673. action 02 if $_track_state eq "up"
  674. action 03 syslog msg "Switch to BU"
  675. action 04 cli command "en"
  676. action 05 cli command "conf t"
  677. action 06 cli command "int range tu1-2"
  678. action 07 cli command "shut"
  679. action 08 cli command "no tunnel source FastEthernet4.1000"
  680. action 09 cli command "tunnel source vlan 999"
  681. action 10 cli command "no shut"
  682. action 11 cli command "end"
  683. action 12 track set 300 state down
  684. action 13 else
  685. action 14 syslog msg "Do nothing"
  686. action 15 end
  687. event manager applet IPSLA-switch-to-BU-2 authorization bypass
  688. event tag 1 track 200 state up
  689. action 00 syslog msg "Backup link Up"
  690. action 01 track read 100
  691. action 02 if $_track_state eq "up"
  692. action 03 syslog msg "Do nothing"
  693. action 04 else
  694. action 05 syslog msg "Switch to BU"
  695. action 06 cli command "en"
  696. action 07 cli command "conf t"
  697. action 08 cli command "int range tu1-2"
  698. action 09 cli command "shut"
  699. action 10 cli command "no tunnel source FastEthernet4.1000"
  700. action 11 cli command "tunnel source vlan 999"
  701. action 12 cli command "no shut"
  702. action 13 cli command "end"
  703. action 14 track set 300 state down
  704. action 15 end
  705. !
  706. end
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!