Lord_NIKON
Junior Member | Редактировать | Профиль | Сообщение | Цитировать | Сообщить модератору cisco.backbone#show configuration Using 3976 out of 262136 bytes ! ! Last configuration change at 16:52:02 UTC Thu Jul 25 2013 by admin version 15.2 no service pad service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname cisco.backbone ! boot-start-marker boot-end-marker ! ! logging buffered 51200 warnings enable secret 4 0nB5Pg7vOeAsR3dg19XKA7iz52W0nMaH/kXaF8Z/bMY ! aaa new-model ! ! aaa authentication login default local ! ! ! ! ! aaa session-id common memory-size iomem 10 ! crypto pki trustpoint TP-self-signed-935776800 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-935776800 revocation-check none rsakeypair TP-self-signed-935776800 ! ! crypto pki certificate chain TP-self-signed-935776800 certificate self-signed 01 nvram:IOS-Self-Sig#2.cer ! ! ! ip dhcp excluded-address 10.10.10.1 ip dhcp excluded-address 10.10.10.1 10.10.10.99 ip dhcp excluded-address 10.10.10.120 10.10.10.254 ! ! ip dhcp pool dhcp import all network 10.10.10.0 255.255.255.0 default-router 10.10.10.1 dns-server 10.10.10.1 domain-name backbone.work.ru lease infinite ! ! ! no ip domain lookup ip domain name cisco.backbone.work.ru ip name-server 8.8.8.8 ip name-server 8.8.4.4 ip name-server 192.168.0.2 ip inspect name myfw tcp ip inspect name myfw udp ip inspect name myfw ftp ip inspect name myfw realaudio ip inspect name myfw smtp ip inspect name myfw streamworks ip inspect name myfw vdolive ip inspect name myfw tftp ip inspect name myfw rcmd ip inspect name myfw http ip cef no ipv6 cef ! ! license udi pid CISCO881-K9 sn FCZ1710C0W5 license accept end user agreement license boot module c880-data level advsecurity ! ! username admin privilege 15 secret 4 0nB5Pg7vOeAsR3dg19XKA7iz52W0nMaH/kXaF8Z/bMY ! ! ! ! ! ip ssh time-out 60 ip ssh authentication-retries 2 ip ssh version 2 ! ! crypto isakmp policy 10 authentication pre-share crypto isakmp key vpn-password address 111.111.111.111 ! ! crypto ipsec transform-set to_office esp-des esp-md5-hmac ! ! ! crypto map myvpn 10 ipsec-isakmp set peer 111.111.111.111 set transform-set to_office match address 101 ! ! ! ! ! interface Tunnel0 ip address 192.168.100.2 255.255.255.0 tunnel source FastEthernet4 tunnel destination 111.111.111.111 ! interface FastEthernet0 no ip address ! interface FastEthernet1 no ip address ! interface FastEthernet2 no ip address ! interface FastEthernet3 no ip address ! interface FastEthernet4 description WAN ip address 222.222.222.222 255.255.255.252 ip access-group 103 in ip nat outside ip inspect myfw out ip virtual-reassembly in duplex auto speed auto crypto map myvpn ! interface Vlan1 description LAN ip address 10.10.10.1 255.255.255.0 ip nat inside ip virtual-reassembly in ip tcp adjust-mss 1452 ! ip forward-protocol nd ip http server ip http access-class 23 ip http authentication local ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000 ! ip nat pool ourpool 192.168.2.10 192.168.2.20 netmask 255.255.255.0 ip nat inside source list WAN interface FastEthernet4 overload ip nat inside source route-map nonat pool ourpool overload ip route 0.0.0.0 0.0.0.0 84.17.6.145 ip route 192.168.0.0 255.255.255.0 192.168.100.1 ! ip access-list extended WAN permit ip 10.10.10.0 0.0.0.255 any ! access-list 23 permit 10.10.10.0 0.0.0.7 access-list 101 permit gre host 222.222.222.222 host 111.111.111.111 access-list 103 permit gre host 111.111.111.111 host 222.222.222.222 access-list 103 permit udp host 111.111.111.111 eq isakmp host 222.222.222.222 access-list 103 permit esp host 111.111.111.111 host 222.222.222.222 access-list 175 deny ip 10.10.10.0 0.0.0.255 192.168.0.0 0.0.0.255 access-list 175 permit ip 10.10.10.0 0.0.0.255 any no cdp run ! route-map nonat permit 10 match ip address 175 ! ! ! ! ! line con 0 line aux 0 line vty 0 4 access-class 23 in privilege level 15 transport input telnet ssh ! ! end | Всего записей: 63 | Зарегистр. 09-01-2007 | Отправлено: 14:55 26-07-2013 | Исправлено: Lord_NIKON, 18:51 06-08-2013 |
|