TEXT   110

FNFD HV WAN Router.txt

Guest on 13th September 2021 06:00:13 PM

  1. FNFD-HV#show config
  2. Using 5477 out of 262136 bytes
  3. !
  4. ! Last configuration change at 19:39:33 EST Mon Feb 11  by fnfd
  5. ! NVRAM config last updated at 19:39:37 EST Mon Feb 11 by fnfd
  6. ! NVRAM config last updated at 19:39:37 EST Mon Feb 11  by fnfd
  7. version 15.1
  8. service timestamps debug datetime localtime show-timezone
  9. service timestamps log datetime localtime show-timezone
  10. service password-encryption
  11. !
  12. hostname FNFD-HV
  13. !
  14. boot-start-marker
  15. boot-end-marker
  16. !
  17. !
  18. logging buffered 4096
  19. enable secret 5 $1$SqRn$dgdhjlB5nCMXOF0RURT3x1
  20. !
  21. no aaa new-model
  22. memory-size iomem 10
  23. clock timezone EST -5 0
  24. clock summer-time EDT recurring
  25. !
  26. no ipv6 cef
  27. ip source-route
  28. ip cef
  29. !
  30. !
  31. !
  32. ip dhcp excluded-address 172.30.2.1 172.30.2.119
  33. ip dhcp excluded-address 172.30.2.161 172.30.2.254
  34. !
  35. ip dhcp pool FNFD
  36.  network 172.30.2.0 255.255.255.0
  37.  default-router 172.30.2.1
  38.  netbios-name-server 172.30.50.22 172.30.1.185
  39.  domain-name fnfd.com
  40.  dns-server 172.30.50.22 172.30.1.185 199.45.32.38
  41.  lease 0 3
  42. !
  43. !
  44. ip domain name fnfd.com
  45. ip name-server 172.30.2.20
  46. ip name-server 172.30.1.185
  47. multilink bundle-name authenticated
  48. !
  49. crypto pki token default removal timeout 0
  50. !
  51. crypto pki trustpoint TP-self-signed-412165172
  52.  enrollment selfsigned
  53.  subject-name cn=IOS-Self-Signed-Certificate-412165172
  54.  revocation-check none
  55.  rsakeypair TP-self-signed-412165172
  56. !
  57. !
  58. crypto pki certificate chain TP-self-signed-412165172
  59.  certificate self-signed 01 nvram:IOS-Self-Sig#1.cer
  60. license udi pid CISCO1921/K9 sn FGL164222L8
  61. !
  62. !
  63. username fnfd privilege 15 secret 4 77WwrmwfwTDGjSCfHiJkyD8tao6VbUoCVY/0dYE/7rI
  64. username fnfd-dc password 7 060506324F41
  65. !
  66. !
  67. !
  68. !
  69. !
  70. !
  71. interface Embedded-Service-Engine0/0
  72.  no ip address
  73.  shutdown
  74. !
  75. interface GigabitEthernet0/0
  76.  description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$
  77.  ip address 172.30.2.10 255.255.255.0
  78.  ip helper-address 172.30.1.25
  79.  no ip redirects
  80.  ip directed-broadcast
  81.  standby 0 ip 172.30.2.1
  82.  standby 0 priority 120
  83.  standby 0 preempt
  84.  duplex auto
  85.  speed auto
  86. !
  87. interface GigabitEthernet0/1
  88.  no ip address
  89.  duplex auto
  90.  speed auto
  91. !
  92. interface Serial0/0/0
  93.  ip address 172.30.254.18 255.255.255.252
  94.  ip directed-broadcast
  95.  ip ospf network point-to-point
  96.  ip ospf hello-interval 2
  97.  no fair-queue
  98.  service-module t1 timeslots 1-24
  99. !
  100. router ospf 1
  101.  network 172.30.0.0 0.0.255.255 area 0
  102.  distribute-list 110 out
  103.  distribute-list 110 in
  104. !
  105. router bgp 65530
  106.  bgp log-neighbor-changes
  107.  neighbor 50.201.216.225 remote-as 65530
  108.  neighbor 50.201.216.225 weight 100
  109.  neighbor 50.201.216.225 route-map trans in
  110.  neighbor 172.30.254.17 remote-as 65520
  111.  neighbor 172.30.254.17 weight 75
  112. !
  113. ip forward-protocol nd
  114. !
  115. no ip http server
  116. ip http access-class 23
  117. ip http authentication local
  118. ip http secure-server
  119. ip http timeout-policy idle 60 life 86400 requests 10000
  120. !
  121. ip route 0.0.0.0 0.0.0.0 172.30.2.5 210
  122. ip route 50.201.216.225 255.255.255.255 172.30.2.2
  123. ip route 126.49.172.0 255.255.255.128 172.48.136.4
  124. ip route 126.49.172.128 255.255.255.128 172.48.136.4
  125. ip route 172.30.6.0 255.255.255.0 172.30.2.4
  126. ip route 172.30.8.0 255.255.255.0 172.30.2.2
  127. !
  128. logging trap debugging
  129. logging source-interface GigabitEthernet0/0
  130. logging 172.30.1.22
  131. access-list 20 permit 63.140.14.112
  132. access-list 23 permit 10.10.10.0 0.0.0.7
  133. access-list 97 permit 172.30.1.22
  134. access-list 100 permit ip host 172.30.2.2 172.30.254.8 0.0.0.3
  135. access-list 100 deny   ip any host 172.30.1.14
  136. access-list 100 deny   ip host 172.30.1.14 any
  137. access-list 100 deny   ip host 172.30.2.254 any log
  138. access-list 100 deny   ip any host 172.30.2.254 log
  139. access-list 100 permit ip 172.30.2.0 0.0.0.255 any time-range WorkDay
  140. access-list 100 permit ip any 172.30.2.0 0.0.0.255 time-range WorkDay
  141. access-list 100 permit ip host 172.30.1.7 any log
  142. access-list 100 permit ip any host 172.30.1.7 log
  143. access-list 110 deny   ip host 67.111.250.224 any
  144. access-list 110 deny   ip any host 67.111.250.224
  145. access-list 110 deny   ip host 12.233.19.128 any
  146. access-list 110 deny   ip any host 12.233.19.128
  147. access-list 110 deny   ip host 72.84.129.0 any
  148. access-list 110 deny   ip any host 72.84.129.0
  149. access-list 110 permit ip any any
  150. access-list 155 permit icmp 172.30.254.8 0.0.0.3 any
  151. access-list 155 permit icmp any 172.30.254.8 0.0.0.3
  152. access-list 161 permit udp any any eq bootps
  153. access-list 161 permit udp any any eq bootpc
  154. access-list 161 permit udp any eq bootps any
  155. access-list 161 permit udp any eq bootpc any
  156. access-list 162 permit udp host 169.200.39.38 host 172.30.2.255 eq 3900
  157. access-list 162 permit udp host 169.200.39.38 host 172.30.2.1 eq 3900
  158. dialer-list 1 protocol ip list 100
  159. !
  160. route-map deforig permit 10
  161.  match ip address 20
  162. !
  163. route-map trans permit 10
  164.  set ip next-hop 172.30.2.2
  165. !
  166. !
  167. snmp-server engineID local 00000009020000D0BA6A97E0
  168. snmp-server community FNFD view v1default RO 97
  169. snmp-server trap-source GigabitEthernet0/0
  170. snmp-server enable traps envmon
  171. snmp-server enable traps bgp
  172. snmp-server host 172.30.1.30 version 2c FNFD  bgp snmp
  173. !
  174. control-plane
  175. !
  176. !
  177. !
  178. line con 0
  179.  login local
  180. line aux 0
  181.  no exec
  182.  transport input all
  183.  stopbits 1
  184. line 2
  185.  no activation-character
  186.  no exec
  187.  transport preferred none
  188.  transport input all
  189.  transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
  190.  stopbits 1
  191. line vty 0 4
  192.  access-class 23 in
  193.  privilege level 15
  194.  password 7 08164D420518061253
  195.  login
  196.  transport input telnet ssh
  197. line vty 5 15
  198.  access-class 23 in
  199.  privilege level 15
  200.  login local
  201.  transport input telnet ssh
  202. !
  203. no scheduler allocate
  204. ntp server 172.30.1.15
  205. ntp server 172.30.1.22
  206. time-range WorkDay
  207.  periodic weekdays 7:45 to 17:30
  208. !
  209. end

Raw Paste


Login or Register to edit or fork this paste. It's free.