API tools faq
paste
Advertisement
Guest User

router config test

a guest
Jan 16th, 2018
584
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.73 KB | None | 0 0
raw download clone embed print report
  1. Current configuration : 3781 bytes
  2. !
  3. version 12.3
  4. no service pad
  5. service timestamps debug datetime msec
  6. service timestamps log datetime msec
  7. no service password-encryption
  8. !
  9. hostname retail
  10. !
  11. boot-start-marker
  12. boot-end-marker
  13. !
  14. enable password myenablepassword
  15. ! ed@fatmanscreaming.com
  16. username ed password 0 alphanumerica
  17. aaa new-model
  18. !
  19. aaa group server radius rad_eap
  20. server 10.0.1.1 auth-port 1812 acct-port 1813
  21. !
  22. aaa authentication login eap_methods group rad_eap
  23. aaa session-id common
  24. ip subnet-zero
  25. ip cef
  26. !
  27. vpdn enable
  28. vpdn-group 1
  29. request-dialin
  30. protocol pppoe
  31. !
  32. interface dialer 1
  33. ip address negotiated
  34. ppp authentication chap
  35. dialer pool 1
  36. dialer-group 1
  37. !
  38. dialer-list 1 protocol ip permit
  39. ip nat inside source list 1 interface dialer 0 overload
  40. ip classless (default)
  41. ip route 10.10.25.2 0.255.255.255 dialer 0
  42. !
  43. ip dhcp excluded-address 10.0.1.1 10.0.1.10
  44. ip dhcp excluded-address 10.0.2.1 10.0.2.10
  45. ip dhcp excluded-address 10.0.3.1 10.0.3.10
  46. !
  47. ip dhcp pool vlan1
  48. network 10.0.1.0 255.255.255.0
  49. default-router 10.0.1.1
  50. !
  51. ip dhcp pool vlan2
  52. network 10.0.2.0 255.255.255.0
  53. default-router 10.0.2.1
  54. !
  55. ip dhcp pool vlan3
  56. network 10.0.3.0 255.255.255.0
  57. default-router 10.0.3.1
  58. !
  59. ip ips po max-events 100
  60. no ftp-server write-enable
  61. !
  62. bridge irb
  63. !
  64. interface FastEthernet2
  65. no ip address
  66. !
  67. interface FastEthernet3
  68. no ip address
  69. !
  70. interface FastEthernet4
  71. no ip address
  72. !
  73. interface FastEthernet5
  74. no ip address
  75. !
  76. interface FastEthernet6
  77. no ip address
  78. !
  79. interface FastEthernet7
  80. no ip address
  81. !
  82. interface FastEthernet8
  83. no ip address
  84. !
  85. interface FastEthernet9
  86. switchport mode trunk
  87. no ip address
  88. !
  89. interface FastEthernet0
  90. ip address 192.1.12.2 255.255.255.0
  91. no ip directed-broadcast (default)
  92. ip nat outside
  93. ip access-group 103 in
  94. no cdp enable
  95. crypto ipsec client ezvpn ezvpnclient outside
  96. crypto map static-map
  97. duplex auto
  98. speed auto
  99. !
  100. interface FastEthernet1
  101. no ip address
  102. duplex auto
  103. speed auto
  104. !
  105. crypto isakmp policy 1
  106. encryption 3des
  107. authentication pre-share
  108. group 2
  109. lifetime 480
  110. !
  111. crypto isakmp client configuration group rtr-remote
  112. key secret-password
  113. dns 10.50.10.1 10.60.10.1
  114. domain company.com
  115. pool dynpool
  116. !
  117. crypto ipsec transform-set vpn1 esp-3des esp-sha-hmac
  118. !
  119. crypto ipsec security-association lifetime seconds 86400
  120. !
  121. crypto dynamic-map dynmap 1
  122. set transform-set vpn1
  123. reverse-route
  124. !
  125. crypto map static-map 1 ipsec-isakmp dynamic dynmap
  126. crypto map dynmap isakmp authorization list rtr-remote
  127. crypto map dynmap client configuration address respond
  128.  
  129. crypto ipsec client ezvpn ezvpnclient
  130. connect auto
  131. group 2 key secret-password
  132. mode client
  133. peer 192.168.100.1
  134. !
  135. interface Dot11Radio0
  136. no ip address
  137. !
  138. broadcast-key vlan 1 change 45
  139. !
  140. encryption vlan 1 mode ciphers tkip
  141. !
  142. ssid cisco
  143. vlan 1
  144. authentication open
  145. authentication network-eap eap_methods
  146. authentication key-management wpa optional
  147. !
  148. ssid ciscowep
  149. vlan 2
  150. authentication open
  151. !
  152. ssid ciscowpa
  153. vlan 3
  154. authentication open
  155. !
  156. speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  157. rts threshold 2312
  158. power local cck 50
  159. power local ofdm 30
  160. channel 2462
  161. station-role root
  162. !
  163. interface Dot11Radio0.1
  164. description Cisco Open
  165. encapsulation dot1Q 1 native
  166. no cdp enable
  167. bridge-group 1
  168. bridge-group 1 subscriber-loop-control
  169. bridge-group 1 spanning-disabled
  170. bridge-group 1 block-unknown-source
  171. no bridge-group 1 source-learning
  172. no bridge-group 1 unicast-flooding
  173. !
  174. interface Dot11Radio0.2
  175. encapsulation dot1Q 2
  176. bridge-group 2
  177. bridge-group 2 subscriber-loop-control
  178. bridge-group 2 spanning-disabled
  179. bridge-group 2 block-unknown-source
  180. no bridge-group 2 source-learning
  181. no bridge-group 2 unicast-flooding
  182. !
  183. interface Dot11Radio0.3
  184. encapsulation dot1Q 3
  185. bridge-group 3
  186. bridge-group 3 subscriber-loop-control
  187. bridge-group 3 spanning-disabled
  188. bridge-group 3 block-unknown-source
  189. no bridge-group 3 source-learning
  190. no bridge-group 3 unicast-flooding
  191. !
  192. interface Vlan1
  193. ip address 192.168.1.1 255.255.255.0
  194. no ip directed-broadcast (default)
  195. crypto ipsec client ezvpn ezvpnclient inside
  196. ip inspect firewall in
  197. no cdp enable
  198. bridge-group 1
  199. bridge-group 1 spanning-disabled
  200. !
  201. interface Vlan2
  202. no ip address
  203. bridge-group 2
  204. bridge-group 2 spanning-disabled
  205. !
  206. interface Vlan3
  207. no ip address
  208. bridge-group 3
  209. bridge-group 3 spanning-disabled
  210. !
  211. interface BVI1
  212. ip address 10.0.1.1 255.255.255.0
  213. ip nat inside
  214. !
  215. interface BVI2
  216. ip address 10.0.2.1 255.255.255.0
  217. !
  218. interface BVI3
  219. ip address 10.0.3.1 255.255.255.0
  220. !
  221. ip classless
  222. !
  223. ip http server
  224. no ip http secure-server
  225. !
  226. radius-server local
  227. nas 10.0.1.1 key 0 cisco123
  228. group rad_eap
  229. !
  230. user jsomeone nthash 7 0529575803696F2C492143375828267C7A760E1113734624452725707C010B065B
  231. user AMER\jsomeone nthash 7 0224550C29232E041C6A5D3C5633305D5D560C09027966167137233026580E0B0D
  232. !
  233. radius-server host 10.0.1.1 auth-port 1812 acct-port 1813 key cisco123
  234. !
  235. control-plane
  236. !
  237. bridge 1 route ip
  238. bridge 2 route ip
  239. bridge 3 route ip
  240. !
  241. ip inspect name firewall tcp
  242. ip inspect name firewall udp
  243. ip inspect name firewall rtsp
  244. ip inspect name firewall h323
  245. ip inspect name firewall netshow
  246. ip inspect name firewall ftp
  247. ip inspect name firewall sqlnet
  248. !
  249. access-list 103 permit udp host 200.1.1.1 any eq isakmp
  250. access-list 103 permit udp host 200.1.1.1 eq isakmp any
  251. access-list 103 permit esp host 200.1.1.1 any
  252. access-list 103 permit icmp any any
  253. access-list 103 deny ip any any
  254. access-list 105 permit ip 10.1.1.0 0.0.0.255 192.168.0.0 0.0.255.255
  255. no cdp run
  256. !
  257. line con 0
  258. password cisco123
  259. no modem enable
  260. transport preferred all
  261. transport output all
  262. line aux 0
  263. transport preferred all
  264. transport output all
  265. line vty 0 4
  266. password cisco123
  267. transport preferred all
  268. transport input all
  269. transport output all
  270. !
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!