Tweet
VPN Cisco 887
Code:
show run Building configuration... Current configuration : 3819 bytes ! version 12.4 no service pad service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname cisco877 ! boot-start-marker boot-end-marker ! enable secret 5 $1$xBVw$x9NoZs5Psedcl0O.Fn9Nz0 ! no aaa new-model ! resource policy ! ip subnet-zero ip cef ! --More-- ! vpdn enable ! ! ! crypto pki trustpoint TP-self-signed-4081572961 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-4081572961 revocation-check none rsakeypair TP-self-signed-4081572961 ! ! crypto pki certificate chain TP-self-signed-4081572961 certificate self-signed 01 30820241 308201AA A0030201 02020101 300D0609 2A864886 F70D0101 04050030 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 34303831 35373239 3631301E 170D3032 30333031 30373238 31325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 30383135 37323936 3130819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100C716 78D7D4DE 8CEE6835 8726C691 A597ADD4 EDEF6684 A1C45907 69F454D6 85F5ACEF 05C7FB76 93E8D28B 8469A2C5 9910C102 44959641 64BE60A4 B96C76B1 1201EAD5 0EF426D2 AB036B49 12EE3BD5 C04585E7 ECF1E240 AB06430B EA225001 --More-- 93FB7E0B 59167DE8 B2A2E3A7 10562145 DC88CDD8 BD65F355 2FA1CA34 C04A9774 C9250203 010001A3 69306730 0F060355 1D130101 FF040530 030101FF 30140603 551D1104 0D300B82 09636973 636F3837 372E301F 0603551D 23041830 16801461 D78CB432 1B0E2C8F 08C99706 6F553AD0 D9D29930 1D060355 1D0E0416 041461D7 8CB4321B 0E2C8F08 C997066F 553AD0D9 D299300D 06092A86 4886F70D 01010405 00038181 009E9F3E 60552DC6 15482DE9 9A73FA66 C66530B9 16EDF984 7A4AD72B E67FDD15 11DA037A 87A0E839 F2F368B7 67EE0434 6D58A610 BD0045AC E298C1F4 B1005B1A ABBE2C02 33E5BAE3 BF283EE2 4F7C902B 914E126F AEE13BF2 526D7EDE 2BDA2DD3 BDE0F51D D5C6091D 2B9EF35C 9A5D9B5A ED823C51 F29FFD98 C1656791 E323CCA9 88 quit ! ! ! crypto isakmp policy 1 encr 3des authentication pre-share group 2 crypto isakmp client configuration address-pool local dynpool ! crypto isakmp client configuration group tanmai key 123 dns 192.168.0.10 --More-- wins 192.168.0.10 domain giaytanmai.com pool dynpool include-local-lan ! ! crypto ipsec transform-set transform-1 esp-3des esp-sha-hmac ! crypto dynamic-map dynmap 1 set transform-set transform-1 ! ! crypto map dynmap isakmp authorization list tanmai crypto map dynmap client configuration address respond crypto map dynmap 1 ipsec-isakmp dynamic dynmap ! ! ! interface ATM0 description $ES_WAN$ no ip address no atm ilmi-keepalive pvc 8/35 --More-- pppoe-client dial-pool-number 1 ! dsl operating-mode auto ! interface FastEthernet0 ! interface FastEthernet1 ! interface FastEthernet2 ! interface FastEthernet3 ! interface Vlan1 description $FW_INSIDE$ ip address 192.168.0.1 255.255.255.0 ip nat inside ip virtual-reassembly ! interface Dialer0 description $FW_OUTSIDE$ mtu 1492 ip ddns update hostname tanmai.dyndns.org ip address 203.210.220.137 255.255.255.128 --More-- ip nat outside ip virtual-reassembly encapsulation ppp dialer pool 1 dialer-group 1 no cdp enable ppp pap sent-username test password 0 test crypto map dynmap ! ip local pool dynpool 192.168.1.1 192.168.1.10 ip classless ip route 0.0.0.0 0.0.0.0 Dialer0 ! ip http server ip http secure-server ip nat inside source list 102 interface Dialer0 overload ! access-list 102 permit ip any any dialer-list 1 protocol ip list 102 no cdp run ! --More-- control-plane ! ! line con 0 no modem enable line aux 0 line vty 0 4 password 123456 login ! scheduler max-task-time 5000 end cisco877#