wiki:Realisations/2007-2008/Projet/Entreprise1/C2801

Context Navigation

← Previous Version
View Latest Version
Next Version →

Version 1 (modified by oriol, 17 years ago) (diff)
--

Configuration Cisco 2801 (MARS)

!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname MARS
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable password 7 0822455D0A16
!
no aaa new-model
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.1.1
ip dhcp excluded-address 10.10.1.13 10.10.1.254
!
ip dhcp pool interne
   import all
   network 10.10.1.0 255.255.255.0
!
ip dhcp pool tftp-server-name
   host 10.20.5.3 255.255.255.0
   hardware-address 0015.1724.cb09
!
!
ip multicast-routing 
!
ipv6 unicast-routing
ipv6 cef
ftp-server enable
ftp-server topdir /
!
voice-card 0
!
!
!
!
!
!
!
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-2922593269
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2922593269
 revocation-check none
 rsakeypair TP-self-signed-2922593269
!
!
crypto pki certificate chain TP-self-signed-2922593269
 certificate self-signed 01
  30820241 308201AA A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 32393232 35393332 3639301E 170D3038 30363130 30393135 
  31345A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 39323235 
  39333236 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100ABF3 9323A369 E5445A36 4C4EDDF1 C6616AC1 2B62C87C B1200923 24B6B281 
  B3CDEA14 8D96B101 82B3C310 849C4851 212EF7EB 8C39B55B 9B1C89F6 684F650F 
  D1C35F56 E4B694F9 0F138E3C 867B84CD E4A0C0FB F0BF9069 110CFBDD 421610E9 
  20505864 99DA45C7 E457DE5F 3C60F285 2C40429C 49A919F9 86C6E98B 0632A25C 
  E3CB0203 010001A3 69306730 0F060355 1D130101 FF040530 030101FF 30140603 
  551D1104 0D300B82 09636973 636F3238 3030301F 0603551D 23041830 168014AD 
  6475235A 584BF944 427F2CC4 321C43FD CBD16630 1D060355 1D0E0416 0414AD64 
  75235A58 4BF94442 7F2CC432 1C43FDCB D166300D 06092A86 4886F70D 01010405 
  00038181 00A15D6A E977BCDD 2D4FA2DC 4E95D8EE 424A04A5 44D7DD10 015A2835 
  0BEC60C4 DD647A7D D7C03FB8 1D44C322 84B0A7B1 FEDEB588 E3FA666B E53E837A 
  B2B322F8 9EC67711 E878EADF BCF32980 12A499C2 361C0BBF F189518E C5C8C3EA 
  72F6B483 CEF04AE6 3FB0D044 99B7794B D42626F5 E872DA4D 2E95A02F 743CD2DC 
  5E38C2F6 F1
  quit
username david privilege 15 password 7 001415140148
!
!
class-map match-any SDMVoice-FastEthernet0/1
 match protocol rtp audio 
 match  dscp ef 
class-map match-any SDMSVideo-FastEthernet0/1
 match protocol cuseeme
 match protocol netshow
 match protocol rtsp
 match protocol streamwork
 match protocol vdolive
!
!
policy-map SDM-Pol-FastEthernet0/1
 class SDMVoice-FastEthernet0/1
  priority percent 70
  set dscp default
 class SDMSVideo-FastEthernet0/1
  bandwidth remaining percent 40
  set dscp af41
!
! 
!
crypto isakmp policy 1
 hash md5
 authentication pre-share
 group 2
 lifetime 3600
crypto isakmp key plateforme6 address 10.20.3.1
!
!
crypto ipsec transform-set PapaBear esp-3des 
crypto ipsec transform-set MamaBear ah-md5-hmac esp-3des 
crypto ipsec transform-set BabyBear ah-md5-hmac 
!
crypto map armadillo 10 ipsec-isakmp 
 set peer 10.20.3.1
 set transform-set MamaBear 
 match address 101
 qos pre-classify
!
!
!
!
interface FastEthernet0/0
 description inside network interface
 ip address 10.10.0.1 255.255.255.252
 ip pim dense-mode
 ip igmp version 3
 ip dvmrp unicast-routing
 duplex auto
 speed auto
 ipv6 address 2001:DB8:8001:2000::1/64
 ipv6 enable
 ipv6 ospf 1 area 0
!
interface FastEthernet0/1
 description outside network interface
 ip address 10.20.1.2 255.255.255.252
 ip nbar protocol-discovery
 ip pim dense-mode
 ip igmp version 3
 ip dvmrp unicast-routing
 duplex auto
 speed auto
 ipv6 address 2001:DB8:8000:3::2/64
 ipv6 enable
 ipv6 nd suppress-ra
 service-policy output SDM-Pol-FastEthernet0/1
 ip rsvp bandwidth 50000 2000
!
router ospf 65001
 router-id 10.10.0.1
 log-adjacency-changes
 redistribute bgp 65001
 neighbor 10.10.0.2
!
router rip
 version 2
 network 10.0.0.0
 neighbor 10.10.0.2
!
router bgp 65001
 bgp router-id 10.20.1.2
 no bgp default ipv4-unicast
 no bgp log-neighbor-changes
 neighbor 10.20.1.1 remote-as 65002
 neighbor 2001:DB8:8000:3::1 remote-as 65002
 !
 address-family ipv4
 neighbor 10.20.1.1 activate
 no auto-summary
 no synchronization
 network 10.10.0.0 mask 255.255.0.0
 exit-address-family
 !
 address-family ipv6
 neighbor 2001:DB8:8000:3::1 activate
 neighbor 2001:DB8:8000:3::1 soft-reconfiguration inbound
 neighbor 2001:DB8:8000:3::1 prefix-list to-AS2 out
 network 2001:DB8:8001::/48
 exit-address-family
!
ip route 0.0.0.0 0.0.0.0 10.20.1.1
ip route 10.10.0.0 255.255.0.0 10.10.0.2
!
!
ip http server
ip http secure-server
ip pim ssm default
!
access-list 101 permit ip 10.10.1.0 0.0.0.255 10.20.5.0 0.0.0.255
ipv6 router ospf 1
 router-id 10.10.0.1
 log-adjacency-changes
 area 0 range 2001:DB8:8001::/48
 redistribute bgp 65001
!
!
!
ipv6 prefix-list to-AS2 seq 5 permit 2001:DB8:8001::/48
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
 privilege level 15
 password 7 110A1016141D
 login
 transport input telnet ssh
 transport output telnet ssh
!
scheduler allocate 20000 1000

Download in other formats:

Plain Text