C
********************************************************
Warning! Unauthorized access and use of this network will
be vigorously prosecuted.
********************************************************
User Access Verification
Password:
cisco2821#show run
Building configuration...
Current configuration : 9434 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname cisco2821
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
enable secret 5 $1$E1HX$5yiGpryc0qWjPx7Rz1Hu21
enable password wincheer
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
!
no ip domain lookup
ip name-server 116.228.111.118
ip name-server 180.168.255.18
vpdn enable
!
vpdn-group 1
!
!
username wincheer privilege 15 password 0 wincheer
!
!
!
interface GigabitEthernet0/0
ip address 112.64.148.22 255.255.255.252
no ip proxy-arp
ip nat outside
shutdown
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
no ip proxy-arp
duplex auto
speed auto
pppoe enable
pppoe-client dial-pool-number 1
no cdp enable
!
interface FastEthernet0/1/0
!
interface FastEthernet0/1/1
!
interface FastEthernet0/1/2
!
interface FastEthernet0/1/3
!
interface Serial0/0/0
no ip address
shutdown
clock rate 8000000
!
interface Serial0/0/1
no ip address
shutdown
clock rate 8000000
!
interface Vlan1
ip address 192.168.66.1 255.255.255.0
ip nat inside
ip route-cache policy
ip policy route-map bpr
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
encapsulation ppp
ip tcp adjust-mss 1452
no ip mroute-cache
dialer pool 1
dialer idle-timeout 0
dialer hold-queue 100
dialer persistent
dialer-group 1
no cdp enable
ppp pap sent-username ad80379558 password 0 46149109
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
!
no ip http server
ip http authentication local
ip http timeout-policy idle 5 life 86400 requests 10000
ip nat translation timeout 180
ip nat translation tcp-timeout 60
ip nat translation udp-timeout 30
ip nat translation syn-timeout 20
ip nat translation dns-timeout 30
ip nat translation icmp-timeout 10
ip nat inside source list G1 interface Dialer1 overload
ip nat inside source static tcp 192.168.66.92 81 interface Dialer1 81
ip nat inside source static tcp 192.168.66.92 1391 interface Dialer1 1391
ip nat inside source static tcp 192.168.66.76 1024 interface Dialer1 1024
ip nat inside source static tcp 192.168.66.56 80 interface Dialer1 5656
ip nat inside source static tcp 192.168.66.158 83 interface Dialer1 83
ip nat inside source route-map a interface GigabitEthernet0/1 overload
ip nat inside source route-map b interface GigabitEthernet0/0 overload
ip nat inside source route-map c interface GigabitEthernet0/0 overload
ip nat inside source route-map d interface GigabitEthernet0/1 overload
ip nat inside source static tcp 192.168.66.231 5482 interface Dialer1 5482
ip nat inside source static tcp 192.168.66.158 3399 interface Dialer1 3399
!
ip access-list standard G1
permit 192.168.66.42
permit 192.168.66.46
permit 192.168.66.37
permit 192.168.66.49
permit 192.168.66.10
permit 192.168.66.8
permit 192.168.66.13
permit 192.168.66.6
permit 192.168.66.4
permit 192.168.66.24
permit 192.168.66.19
permit 192.168.66.17
permit 192.168.66.20
permit 192.168.66.21
permit 192.168.66.106
permit 192.168.66.107
permit 192.168.66.105
permit 192.168.66.110
permit 192.168.66.108
permit 192.168.66.109
permit 192.168.66.98
permit 192.168.66.99
permit 192.168.66.96
permit 192.168.66.220
permit 192.168.66.221
permit 192.168.66.210
permit 192.168.66.211
permit 192.168.66.215
permit 192.168.66.212
permit 192.168.66.213
ip access-list standard dx
permit 192.168.66.43
permit 192.168.66.40
permit 192.168.66.41
permit 192.168.66.47
permit 192.168.66.44
permit 192.168.66.45
permit 192.168.66.34
permit 192.168.66.35
permit 192.168.66.32
permit 192.168.66.33
permit 192.168.66.38
permit 192.168.66.39
permit 192.168.66.36
permit 192.168.66.58
permit 192.168.66.59
permit 192.168.66.56
permit 192.168.66.57
permit 192.168.66.62
permit 192.168.66.63
permit 192.168.66.60
permit 192.168.66.61
permit 192.168.66.50
permit 192.168.66.51
permit 192.168.66.48
permit 192.168.66.54
permit 192.168.66.55
permit 192.168.66.52
permit 192.168.66.53
permit 192.168.66.11
permit 192.168.66.9
permit 192.168.66.14
permit 192.168.66.15
permit 192.168.66.12
permit 192.168.66.2
permit 192.168.66.3
permit 192.168.66.7
permit 192.168.66.5
permit 192.168.66.26
permit 192.168.66.27
permit 192.168.66.25
permit 192.168.66.30
permit 192.168.66.31
permit 192.168.66.28
permit 192.168.66.29
permit 192.168.66.18
permit 192.168.66.16
permit 192.168.66.22
permit 192.168.66.23
permit 192.168.66.104
permit 192.168.66.111
permit 192.168.66.103
permit 192.168.66.101
permit 192.168.66.123
permit 192.168.66.124
permit 192.168.66.112
permit 192.168.66.118
permit 192.168.66.119
permit 192.168.66.74
permit 192.168.66.72
permit 192.168.66.73
permit 192.168.66.78
permit 192.168.66.79
permit 192.168.66.66
permit 192.168.66.67
permit 192.168.66.64
permit 192.168.66.65
permit 192.168.66.70
permit 192.168.66.71
permit 192.168.66.69
permit 192.168.66.90
permit 192.168.66.91
permit 192.168.66.88
permit 192.168.66.83
permit 192.168.66.80
permit 192.168.66.86
permit 192.168.66.87
permit 192.168.66.84
permit 192.168.66.85
permit 192.168.66.169
permit 192.168.66.172
permit 192.168.66.162
permit 192.168.66.166
permit 192.168.66.167
permit 192.168.66.164
permit 192.168.66.187
permit 192.168.66.185
permit 192.168.66.190
permit 192.168.66.189
permit 192.168.66.176
permit 192.168.66.177
permit 192.168.66.183
permit 192.168.66.140
permit 192.168.66.130
permit 192.168.66.153
permit 192.168.66.144
permit 192.168.66.149
permit 192.168.66.202
permit 192.168.66.203
permit 192.168.66.200
permit 192.168.66.201
permit 192.168.66.206
permit 192.168.66.204
permit 192.168.66.194
permit 192.168.66.192
permit 192.168.66.193
permit 192.168.66.198
permit 192.168.66.199
permit 192.168.66.196
permit 192.168.66.218
permit 192.168.66.208
permit 192.168.66.209
permit 192.168.66.214
!
access-list 150 deny udp any any eq 1434
access-list 150 deny tcp any any eq 445
access-list 150 deny tcp any any eq 5554
access-list 150 deny tcp any any eq 9996
access-list 150 deny tcp any any eq 5800
access-list 150 deny tcp any any eq 5900
access-list 150 deny 250 any any
access-list 150 deny 0 any any
access-list 150 permit ip any any
access-list 150 deny tcp any any eq 135
access-list 150 deny tcp any any eq 4444
snmp-server community public RO
no cdp run
route-map bpr permit 10
match ip address dx
!
route-map a permit 10
match ip address G1
match interface GigabitEthernet0/1
!
route-map b permit 10
match ip address dx
match interface GigabitEthernet0/0
!
route-map c permit 10
match ip address G1
match interface GigabitEthernet0/0
!
route-map d permit 10
match ip address dx
match interface GigabitEthernet0/1
!
!
control-plane
!
banner login ^CC
********************************************************
Warning! Unauthorized access and use of this network will
be vigorously prosecuted.
********************************************************
^C
!
line con 0
line aux 0
line vty 0 4
privilege level 15
password wincheer909
login
transport input telnet
transport output telnet
!
scheduler allocate 20000 1000
!
end
cisco2821#