|
[x]
Posted via EE Mobile
|
||
Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again. |
||
| 05/21/2009 at 05:40AM PDT, ID: 24427509 | Points: 500 |
|
[x]
Attachment Details
|
||
1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 75: 76: 77: 78: 79: 80: 81: 82: 83: 84: 85: 86: 87: 88: 89: 90: 91: 92: 93: 94: 95: 96: 97: 98: 99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: |
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
!
boot-start-marker
boot-end-marker
!
logging buffered 16834
!
aaa new-model
!
!
aaa authentication login default local
aaa authentication login userauthen local
aaa authorization exec default local
aaa authorization network groupauthor local
!
!
aaa session-id common
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1 192.168.1.20
ip dhcp excluded-address 192.168.2.1 192.168.2.20
!
ip dhcp pool INTERNAL-NET
import all
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
domain-name INTERNAL_NET
lease 4
!
ip dhcp pool vlan20
import all
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1
domain-name vlan20
lease 4
!
!
ip cef
ip domain name
ip name-server 4.2.2.2
!
!
crypto pki trustpoint TP-self-signed-3795100480
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3795100480
revocation-check none
rsakeypair TP-self-signed-3795100480
!
!
crypto pki certificate chain TP-self-signed-3795100480
certificate self-signed 01
30820249 308201B2 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33373935 31303034 3830301E 170D3038 31303134 30353039
32375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 37393531
30303438 3030819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100A2CB C72F17DC 86A73A14 34E4781B 8F6D41ED C6BDB9E0 B7053F5B 79409A7F
D97F18AB 590E7FA9 B24321EE 1C5B0EC7 CB80D0AF 4709D494 2B06A843 43E04F5D
2B08C967 64BF957A 91699675 2CEEBC5E BE5079EC 1B0CE4F0 A2C47E0E 3E0703E1
021C8D0B 40927245 6D038001 A61C4106 11E15400 57EA7DD0 36B3D5E6 AE6C4251
441B0203 010001A3 71306F30 0F060355 1D130101 FF040530 030101FF 301C0603
551D1104 15301382 114F5241 5745524F 55544552 2E4F5241 5745301F 0603551D
23041830 168014AA 44C75294 8C259DC0 7A9B75BE EFAAD2C7 6F964930 1D060355
1D0E0416 0414AA44 C752948C 259DC07A 9B75BEEF AAD2C76F 9649300D 06092A86
4886F70D 01010405 00038181 00762ADF 9D953505 8F031F4A D8B25FE6 42D51C92
3329861B 4D1EF451 B53D6BCC B4D084B9 A1BC75C8 5EBB75A9 5A5CD236 E4EF2AFE
8FE69468 0A73ADD2 C4FE426A 66E220F0 ACA9099D 6BEA060A C43D654D 20C0EED1
D3653489 56F83121 3947A7FE 0DAFF336 882FB133 7F79DEF3 6BD9770C 2C33D816
17660004 D3EC8594 4E13ED9C 88
quit
!
!
vtp domain ORAWELAB
vtp mode transparent
!
!
crypto logging session
!
crypto isakmp policy 3
encr aes
authentication pre-share
group 2
!
crypto isakmp client configuration group albertvpn
key *******
pool VPN
!
!
crypto ipsec transform-set albertsset esp-aes esp-md5-hmac
!
crypto dynamic-map dynmap 10
set transform-set albertsset
!
!
crypto map albertsmap client authentication list userauthen
crypto map albertsmap isakmp authorization list groupauthor
crypto map albertsmap client configuration address respond
crypto map albertsmap 10 ipsec-isakmp dynamic dynmap
!
bridge irb
!
!
!
interface FastEthernet0
duplex full
speed 100
spanning-tree portfast
!
interface FastEthernet1
duplex full
speed 100
spanning-tree portfast
!
interface FastEthernet2
duplex full
speed 100
spanning-tree portfast
!
interface FastEthernet3
duplex full
speed 100
spanning-tree portfast
!
interface FastEthernet4
ip address dhcp
ip nat outside
ip virtual-reassembly
ip tcp adjust-mss 1460
speed 100
full-duplex
no cdp enable
crypto map albertsmap
!
interface Dot11Radio0
no ip address
!
encryption vlan 1 mode ciphers tkip
!
encryption vlan 20 mode ciphers tkip
!
ssid GUEST-WLAN
vlan 20
authentication open
authentication key-management wpa
wpa-psk ascii 7 03055707011A245F5A1A
!
ssid PATIENCE
vlan 1
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 7 111918111E17050F01
!
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
channel 2412
station-role root
no dot11 extension aironet
no cdp enable
!
interface Dot11Radio0.1
encapsulation dot1Q 1 native
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.20
description Guest wireless LAN - routed WLAN
encapsulation dot1Q 20
ip address 192.168.2.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface Vlan1
description Internal Network
no ip address
ip nat inside
ip virtual-reassembly
bridge-group 1
bridge-group 1 spanning-disabled
!
interface BVI1
description Bridge to Internal Network
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
router rip
network 192.168.1.0
network 192.168.2.0
!
ip local pool VPN 192.168.10.1 192.168.10.3
ip route 192.168.10.0 255.255.255.0 69.248.216.1
ip route 0.0.0.0 0.0.0.0 dhcp
!
ip http server
ip http secure-server
ip nat inside source list NAT_ADDRESSES interface FastEthernet4 overload
!
ip access-list standard NAT_ADDRESSES
permit 192.168.1.0 0.0.0.255
permit 192.168.2.0 0.0.0.255
!
access-list 100 permit ip 192.168.1.0 0.0.0.255 192.168.10.0 0.0.0.255
route-map nonat permit 10
match ip address 100
!
!
control-plane
!
bridge 1 route ip
banner motd ^C
*******************************************************
UNAUTHORIZED ACCESS IS PROHIBITED
*******************************************************^C
alias exec s show ip interface brief
!
line con 0
exec-timeout 59 0
password 7 06070C2E1F1C58
logging synchronous
no modem enable
line aux 0
line vty 0 4
exec-timeout 59 0
!
scheduler max-task-time 5000
end
ORAWEROUTER#
|
Advertisement
