Paste number 44007: cisco config

Paste number 44007: cisco config
Pasted by: Roenie
When:3 years, 3 weeks ago
Share:Tweet this! | http://paste.lisp.org/+XYF
Channel:None
Paste contents:
Raw Source | XML | Display As 
Building configuration...

Current configuration : 7365 bytes
!
! Last configuration change at 21:38:45 PCTime Thu Jul 5 2007 by exclusief
! NVRAM config last updated at 11:30:28 PCTime Thu Jul 5 2007 by exclusief
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname J.Zonneveld
!
boot-start-marker
boot-end-marker
!
logging buffered 4096 debugging
enable secret 5 $1$R1/u$Peq0PaTU7Ge69TCPB0nSp0
!
no aaa new-model
!
resource policy
!
clock timezone PCTime 1
clock summer-time PCTime date Mar 30 2003 2:00 Oct 26 2003 3:00
ip subnet-zero
no ip source-route
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.111.254
ip dhcp excluded-address 192.168.111.1 192.168.111.19
!
ip dhcp pool sdm-pool1
   import all
   network 192.168.111.0 255.255.255.0
   dns-server 62.58.133.83 62.58.133.84 
   default-router 192.168.111.254 
   domain-name exclusief.org
   option 150 ip 10.10.20.81 10.10.20.89 
   netbios-name-server 10.10.20.90 
!
!
no ip bootp server
ip domain name dyndns.org
ip host members.dyndns.org 63.208.196.96
ip name-server 62.58.133.83
ip name-server 62.58.133.84
ip ssh time-out 60
ip ssh authentication-retries 2
ip ddns update method DynDNS
 HTTP
  add http://roenie:banaan@members.dyndns.org/nic/update?system=dyndns&hostname=roenie.dyndns.org&myip=<a>
 interval maximum 29 0 0 0
!
!
!
crypto pki trustpoint TP-self-signed-2850227472
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2850227472
 revocation-check none
 rsakeypair TP-self-signed-2850227472
!
!
crypto pki certificate chain TP-self-signed-2850227472
 certificate self-signed 01
  3082024E 308201B7 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 32383530 32323734 3732301E 170D3037 30363032 32303339 
  30385A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 38353032 
  32373437 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100BEB7 0806156B 4958B232 40749FD3 B647D8AD 8B55201C 2D022921 1624F04A 
  FD2FBDAB 160FA11C 5B1FA199 42B0C51A 42368ABB D4181F16 B19F6779 7E092797 
  20471821 F81041B8 83218C68 8235F2B4 91D46F78 F3AD5695 92DE9AC1 49DFA8D0 
  771B96F9 BBDAC96B 9F800C11 1EF68B68 DBD5FB6A 463D4C25 344DE89B 423D3B52 
  A38B0203 010001A3 76307430 0F060355 1D130101 FF040530 030101FF 30210603 
  551D1104 1A301882 164A2E5A 6F6E6E65 76656C64 2E64796E 646E732E 6F726730 
  1F060355 1D230418 30168014 A2864120 F5F053F6 7C101B96 E3565EB9 BB87BA87 
  301D0603 551D0E04 160414A2 864120F5 F053F67C 101B96E3 565EB9BB 87BA8730 
  0D06092A 864886F7 0D010104 05000381 8100350A E5F25012 1A72808A EC03EDB0 
  3B026C17 252B74C6 1671BF32 A2CEF0C2 40D996BB 236C46EC D354CB83 E224D818 
  9D531A57 F3EB046C B7ACE01F EC6780F8 5A5833F5 1FFBBD00 80570096 4874E7E2 
  9EC127AE 0B306276 026257B5 A8934E1E 54997B3B EC318977 37449A6A D207751A 
  0158FB7A E484ACDF 8E2C8D5F 7472E5A3 A3EE
  quit
username exclusief privilege 15 secret 5 $1$DOhF$x0saKQVsYDIqPI43zAwVe0
!
! 
!
crypto isakmp policy 10
 encr 3des
 authentication pre-share
 group 2
crypto isakmp key 65d69f34bc8ddd6677d9beac83429df8 address 62.58.133.253
crypto isakmp key 65d69f34bc8ddd6677d9beac83429df8 address 81.58.37.246
crypto isakmp key 65d69f34bc8ddd6677d9beac83429df8 address 213.132.166.62
!
!
crypto ipsec transform-set VPNtunnel-policy esp-3des esp-sha-hmac 
!
crypto map VPNtunnel 21 ipsec-isakmp 
 description VPN to Exclusief.net
 set peer 62.58.133.253
 set security-association idle-time 3600
 set transform-set VPNtunnel-policy 
 match address 110
crypto map VPNtunnel 22 ipsec-isakmp 
 description VPN to Roel
 set peer 81.58.37.246
 set security-association idle-time 3600
 set transform-set VPNtunnel-policy 
 match address 111
crypto map VPNtunnel 23 ipsec-isakmp 
 description VPN to Edo
 set peer 213.132.166.62
 set security-association idle-time 3600
 set transform-set VPNtunnel-policy 
 match address 112
!
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
 description $ES_WAN$$FW_OUTSIDE$
 ip ddns update hostname roenie.dyndns.org
 ip ddns update DynDNS host members.dyndns.org
 ip address dhcp client-id FastEthernet4
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat outside
 ip virtual-reassembly
 ip route-cache flow
 duplex auto
 speed auto
 crypto map VPNtunnel
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
 ip address 192.168.111.254 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat inside
 ip virtual-reassembly
 ip route-cache flow
 ip tcp adjust-mss 1452
!
ip classless
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 101 interface FastEthernet4 overload
ip nat inside source static tcp 192.168.111.11 65000 interface FastEthernet4 65000
ip nat inside source static tcp 192.168.111.11 21 interface FastEthernet4 21
ip nat inside source static tcp 192.168.111.11 20 interface FastEthernet4 20
ip nat inside source static tcp 192.168.111.10 5899 interface FastEthernet4 5899
ip nat inside source static tcp 192.168.111.10 3389 interface FastEthernet4 3389
ip dns server
!
logging trap debugging
logging 192.168.111.10
access-list 1 permit 192.168.111.0 0.0.0.255
access-list 1 permit 81.58.37.240 0.0.0.7
access-list 1 permit 62.58.133.0 0.0.0.255
access-list 1 permit 10.10.10.0 0.0.0.255
access-list 101 remark INSIDE_IF=Vlan1
access-list 101 remark SDM_ACL Category=2
access-list 101 remark Used for NAT
access-list 101 deny   ip 192.168.111.0 0.0.0.255 10.10.20.0 0.0.0.255
access-list 101 deny   ip 192.168.111.0 0.0.0.255 10.10.21.0 0.0.0.255
access-list 101 deny   ip 192.168.111.0 0.0.0.255 10.10.10.0 0.0.0.255
access-list 101 deny   ip 192.168.111.0 0.0.0.255 10.10.11.0 0.0.0.255
access-list 101 deny   ip 192.168.111.0 0.0.0.255 192.168.113.0 0.0.0.255
access-list 101 deny   ip 192.168.111.0 0.0.0.255 192.168.114.0 0.0.0.255
access-list 101 permit ip 192.168.111.0 0.0.0.255 any
access-list 110 remark Used for LAN to LAN VPN Exclusief.net
access-list 110 permit ip 192.168.111.0 0.0.0.255 10.10.20.0 0.0.0.255
access-list 110 permit ip 192.168.111.0 0.0.0.255 10.10.21.0 0.0.0.255
access-list 110 permit ip 192.168.111.0 0.0.0.255 10.10.10.0 0.0.0.255
access-list 110 permit ip 192.168.111.0 0.0.0.255 10.10.11.0 0.0.0.255
access-list 111 remark Used for LAN to LAN VPN Roel
access-list 111 permit ip 192.168.111.0 0.0.0.255 192.168.113.0 0.0.0.255
access-list 112 remark Used for LAN to LAN VPN Edo
access-list 112 permit ip 192.168.111.0 0.0.0.255 192.168.114.0 0.0.0.255
no cdp run
!
control-plane
!
banner login ^CCAuthorized access only!
 Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
 password 7 045802150C2E
 login
 no modem enable
 transport output telnet
line aux 0
 login local
 transport output telnet
line vty 0 4
 access-class 1 in
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
sntp server 192.43.244.18
end

This paste has no annotations.

Colorize as:
Show Line Numbers

Lisppaste pastes can be made by anyone at any time. Imagine a fearsomely comprehensive disclaimer of liability. Now fear, comprehensively.