Building configuration... : Saved : PIX Version 6.3(5) interface ethernet0 auto interface ethernet1 100full nameif ethernet0 outside security0 nameif ethernet1 inside security100 hostname pixfirewall domain-name zzz.com fixup protocol dns maximum-length 512 fixup protocol ftp 21 fixup protocol h323 h225 1720 fixup protocol h323 ras 1718-1719 fixup protocol http 80 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol sip 5060 fixup protocol sip udp 5060 fixup protocol skinny 2000 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol tftp 69 no names name 192.168.0.0 LAN name 192.168.0.2 SBS access-list 101 permit tcp any host 1.2.3.4 eq smtp access-list 101 permit tcp any host 1.2.3.4 eq https access-list 101 permit tcp any host 1.2.3.4 eq imap4 access-list 101 permit tcp any host 1.2.3.4 eq pop3 access-list 80 permit ip 192.168.0.0 255.255.255.0 10.1.1.0 255.255.255.0 access-list 81 permit ip 192.168.0.0 255.255.255.0 10.1.1.0 255.255.255.0 pager lines 24 logging timestamp logging console warnings logging trap informational logging host inside 192.168.0.76 mtu outside 1500 mtu inside 1500 ip address outside 1.2.3.4 255.255.255.248 ip address inside 192.168.0.10 255.255.255.0 ip audit info action alarm ip audit attack action alarm ip local pool dealer 10.1.1.1-10.1.1.254 pdm location 192.168.0.2 255.255.255.255 inside pdm location 192.168.0.76 255.255.255.255 inside pdm logging informational 512 pdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 0 access-list 80 nat (inside) 1 0.0.0.0 0.0.0.0 0 0 static (inside,outside) tcp interface smtp 192.168.0.2 smtp netmask 255.255.255.255 0 0 static (inside,outside) tcp interface https 192.168.0.2 https netmask 255.255.255.255 0 0 static (inside,outside) tcp interface imap4 192.168.0.2 imap4 netmask 255.255.255.255 0 0 static (inside,outside) tcp interface pop3 192.168.0.2 pop3 netmask 255.255.255.255 0 0 access-group 101 in interface outside route outside 0.0.0.0 0.0.0.0 1.2.3.3 1 timeout xlate 0:05:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00 timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout sip-disconnect 0:02:00 sip-invite 0:03:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server TACACS+ max-failed-attempts 3 aaa-server TACACS+ deadtime 10 aaa-server RADIUS protocol radius aaa-server RADIUS max-failed-attempts 3 aaa-server RADIUS deadtime 10 aaa-server LOCAL protocol local aaa-server AAAGroup1 protocol radius aaa-server AAAGroup1 max-failed-attempts 3 aaa-server AAAGroup1 deadtime 10 aaa-server AAAGroup1 (inside) host 192.168.0.2 xxxxxx timeout 10 http server enable http 192.168.0.0 255.255.255.0 inside no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps floodguard enable sysopt connection permit-ipsec crypto ipsec transform-set strong-des esp-3des esp-sha-hmac crypto dynamic-map dyn_cisco 4 set transform-set strong-des crypto map partner-map 20 ipsec-isakmp dynamic dyn_cisco crypto map partner-map client authentication AAAGroup1 crypto map partner-map interface outside isakmp enable outside isakmp key ******** address 0.0.0.0 netmask 0.0.0.0 isakmp identity address isakmp nat-traversal 20 isakmp policy 8 authentication pre-share isakmp policy 8 encryption 3des isakmp policy 8 hash md5 isakmp policy 8 group 2 isakmp policy 8 lifetime 86400 vpngroup uxvpn address-pool dealer vpngroup uxvpn dns-server 192.168.0.2 vpngroup uxvpn wins-server 192.168.0.2 vpngroup uxvpn default-domain zzz.Local vpngroup uxvpn split-tunnel 81 vpngroup uxvpn idle-time 1800 telnet 192.168.0.0 255.255.255.0 inside telnet 0.0.0.0 0.0.0.0 inside telnet timeout 5 ssh 0.0.0.0 0.0.0.0 outside ssh timeout 5 console timeout 0 dhcpd address 192.168.0.11-192.168.0.42 inside dhcpd lease 3600 dhcpd ping_timeout 750 dhcpd auto_config outside terminal width 80