!version 15.5 no service pad service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname Bigpond-867 ! boot-start-marker boot-end-marker ! aqm-register-fnf ! logging buffered 51200 warnings ! aaa new-model ! ! aaa authentication login local_access local ! aaa attribute list Users attribute type supplicant-group "Users" ! aaa attribute list Administrators attribute type supplicant-group "Administrators" ! ! ! ! ! aaa session-id common bsd-client server url https://cloudsso.cisco.com/as/token.oauth2 ppp packet throttle 100 1 5 wan mode dsl ! ! ! ip dhcp excluded-address 10.0.0.1 ip dhcp excluded-address 10.0.0.2 ip dhcp excluded-address 10.0.0.3 ! ip dhcp pool ccp-pool import all network 10.0.0.0 255.255.255.0 default-router 10.0.0.1 dns-server 8.8.8.8 8.8.4.4 option 43 hex f104.9665.595a lease 0 2 ! ! ! ip domain name bigpond.com ip name-server 8.8.8.8 ip name-server 8.8.4.4 ip cef no ipv6 cef ! ! flow record nbar-appmon match ipv4 source address match ipv4 destination address match application name collect interface output collect counter bytes collect counter packets collect timestamp absolute first collect timestamp absolute last ! ! flow monitor application-mon cache timeout active 60 record nbar-appmon ! parameter-map type inspect global max-incomplete low 18000 max-incomplete high 20000 nbar-classify ! ! ! ! ! ! ! ! ! crypto pki trustpoint TP-self-signed-1129399092 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-1129399092 revocation-check none rsakeypair TP-self-signed-1129399092 ! ! crypto pki certificate chain TP-self-signed-1129399092 ! ! object-group service INTERNAL_UTM_SERVICE ! object-group network local_cws_net ! object-group network local_lan_subnets any ! object-group network vpn_remote_subnets any ! username admin privilege 15 secret 5 username admin aaa attribute list Administrators username user privilege 7 secret 5 username user aaa attribute list Users username leon privilege 15 secret 5 username leon aaa attribute list Administrators ! crypto key pubkey-chain rsa named-key realm-cisco.pub signature key-string 30820122 300D0609 2A864886 F70D0101 01050003 82010F00 3082010A 02820101 00C19E93 A8AF124A D6CC7A24 5097A975 206BE3A2 06FBA13F 6F12CB5B 4E441F16 17E630D5 C02AC252 912BE27F 37FDD9C8 11FC7AF7 DCDD81D9 43CDABC3 6007D128 B199ABCB D34ED0F9 085FADC1 359C189E F30AF10A C0EFB624 7E0764BF 3E53053E 5B2146A9 D7A5EDE3 0298AF03 DED7A5B8 9479039D 20F30663 9AC64B93 C0112A35 FE3F0C87 89BCB7BB 994AE74C FA9E481D F65875D6 85EAF974 6D9CC8E3 F0B08B85 50437722 FFBE85B9 5E4189FF CC189CB9 69C46F9C A84DFBA5 7A0AF99E AD768C36 006CF498 079F88F8 A3B3FB1F 9FB7B3CB 5539E1D1 9693CCBB 551F78D2 892356AE 2F56D826 8918EF3C 80CA4F4D 87BFCA3B BFF668E9 689782A5 CF31CB6E B4B094D3 F3020301 0001 quit ! ! controller VDSL 0 no cdp run ! track 1 ip sla 1 reachability ! zone security LAN zone security WAN zone security VPN zone security DMZ ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 1.1.1.1 255.255.255.0 ! interface ATM0 no ip address no atm ilmi-keepalive ! interface ATM0.1 point-to-point description PrimaryWANDesc_Bigpond pvc 8/35 encapsulation aal5snap pppoe-client dial-pool-number 1 ! ! interface Ethernet0 description BackupWANDesc_ ip address dhcp hostname Ethernet ! interface FastEthernet0 no ip address ! interface FastEthernet1 no ip address ! interface FastEthernet2 no ip address ! interface GigabitEthernet0 no ip address ! interface GigabitEthernet1 no ip address ! interface GigabitEthernet2 no ip address ip tcp adjust-mss 1412 shutdown duplex auto speed auto ! interface Wlan-GigabitEthernet0 description Internal switch interface connecting to the embedded AP no ip address ! interface Vlan1 description $ETH_LAN$ ip address 10.0.0.1 255.255.255.0 ip nat inside ip virtual-reassembly in ip tcp adjust-mss 1412 ! interface Dialer1 description PrimaryWANDesc_Bigpond_ATM0.1 ip address negotiated ip mtu 1452 ip nat outside ip virtual-reassembly in zone-member security WAN encapsulation ppp dialer pool 1 dialer-group 1 ppp mtu adaptive ppp authentication chap callin ppp chap hostname ppp chap password ppp ipcp dns request no cdp enable ! ip local policy route-map track-primary-if ip forward-protocol nd ip http server ip http access-class 23 ip http authentication local ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000 ! ! no ip nat service sip udp port 5060 ip nat inside source list nat-list interface Dialer1 overload ip nat inside source route-map nat2backup interface Ethernet0 overload ip nat inside source route-map nat2primary interface Dialer1 overload ip route 0.0.0.0 0.0.0.0 Dialer1 track 1 ip route 0.0.0.0 0.0.0.0 Ethernet0 253 ! ip access-list extended nat-list permit ip object-group local_lan_subnets any ! ip sla auto discovery ip sla 1 icmp-echo 8.8.8.8 source-interface Dialer1 ip sla schedule 1 life forever start-time now dialer-list 1 protocol ip permit mac-address-table aging-time 10 ! route-map track-primary-if permit 1 match ip address 197 set interface Dialer1 ! route-map nat2primary permit 1 match ip address nat-list match interface Dialer1 ! route-map nat2backup permit 1 match ip address nat-list match interface Ethernet0 ! access-list 23 permit 10.0.0.0 0.0.0.255 access-list 197 permit icmp any host 8.8.8.8 ! ! ! ! line con 0 login authentication local_access no modem enable line aux 0 line 2 no activation-character no exec transport preferred none transport input all stopbits 1 line vty 0 4 access-class 23 in privilege level 15 login authentication local_access transport input telnet ssh ! scheduler allocate 60000 1000 ! end