Current configuration : 11300 bytes ! version 12.4 service timestamps debug datetime localtime service timestamps log datetime localtime service password-encryption ! boot-start-marker boot-end-marker ! logging buffered 32000 debugging no logging console ! no aaa new-model ! resource policy ! clock timezone est -8 clock summer-time edt recurring no network-clock-participate slot 1 no network-clock-participate wic 0 no ip source-route ip cef ip telnet source-interface FastEthernet0/0 ! ! ip inspect udp idle-time 1800 ip inspect dns-timeout 7 ip inspect name firewall cuseeme timeout 3600 ip inspect name firewall ftp timeout 3600 ip inspect name firewall h323 timeout 3600 ip inspect name firewall realaudio timeout 3600 ip inspect name firewall smtp timeout 3600 ip inspect name firewall sqlnet timeout 3600 ip inspect name firewall streamworks timeout 3600 ip inspect name firewall tcp timeout 3600 ip inspect name firewall tftp timeout 30 ip inspect name firewall udp timeout 15 ip inspect name firewall vdolive timeout 3600 ip inspect name firewall icmp alert off ip inspect name firewall fragment maximum 256 timeout 1 ip inspect name firewall netshow timeout 3600 ip inspect name firewall rtsp timeout 3600 ip inspect name firewall sip timeout 3600 ip inspect name firewall skinny timeout 3600 ip inspect name firewall http java-list 1 timeout 3600 ! ! ip tftp source-interface FastEthernet0/0 no ip domain lookup ip domain name pohanka.adpdlr.com ! ! ! key chain eigrp48 key 48 key-string 7 kkkkkkkkkkk ! ! ! class-map match-any elite_telnet match access-group name real_time match access-group name interactive class-map match-any asp_80 match dscp af21 match dscp af11 class-map match-any elite_apps match dscp ef match dscp af21 class-map match-any nbar_http match access-group name critical match protocol http ! ! policy-map tunnel_qos_child class elite_apps bandwidth percent 36 class class-default fair-queue random-detect policy-map setTOS class elite_telnet set ip dscp af21 class nbar_http set ip dscp af11 policy-map tunnel_qos class class-default shape average percent 90 service-policy tunnel_qos_child ! ! ! crypto isakmp policy 1 encr 3des hash md5 authentication pre-share lifetime 1800 ! crypto isakmp policy 2 encr 3des hash md5 authentication pre-share lifetime 1800 ! crypto isakmp policy 3 encr 3des authentication pre-share lifetime 1800 ! crypto isakmp policy 4 encr 3des authentication pre-share group 2 lifetime 3600 crypto isakmp key xxxxxxxxxxxxxxxxxxxxxx address xxxxxxxxxxxxxxxxxxxx crypto isakmp invalid-spi-recovery ! ! crypto ipsec transform-set 3adp esp-3des esp-sha-hmac ! crypto map dmsovpn 10 ipsec-isakmp set peer xxxxxxxxxxxxxxxxxxxxxxxxxx set transform-set 3adp match address vpn-primary-to-asp ! ! ! interface Tunnel0 bandwidth 1536 ip address 1.0.22.214 255.255.255.252 ip tcp adjust-mss 1420 delay 500000 tunnel source Loopback0 tunnel destination 192.110.78.29 max-reserved-bandwidth 100 service-policy output tunnel_qos ! interface Loopback0 ip address 1.0.22.124 255.255.255.255 ! interface FastEthernet0/0 description Local LAN ip address xxxxxxxxxxxxxxxxxxx no ip redirects ip nat inside ip virtual-reassembly speed 100 full-duplex service-policy input setTOS ! interface Serial0/0 description Verizon P-to-P T1 ip address 1.2.37.38 255.255.255.252 ip nat inside no ip virtual-reassembly no ip mroute-cache fair-queue no dce-terminal-timing-enable ! interface FastEthernet0/1 bandwidth 3072 description ISP interface ip address xxxxxxxxxxxxxxxxxxx ip access-group internet_in in no ip redirects no ip proxy-arp ip inspect firewall out ip nat outside ip virtual-reassembly speed auto full-duplex crypto map dmsovpn ! router eigrp 48 network 1.0.22.212 0.0.0.3 network 1.2.37.36 0.0.0.3 no auto-summary no eigrp log-neighbor-changes ! ip route 0.0.0.0 0.0.0.0 162.84.93.1 ! no ip http server ip http authentication local ip http secure-server ip http timeout-policy idle 600 life 86400 requests 10000 ip nat inside source route-map nat interface FastEthernet0/1 overload ! ! ip access-list extended critical permit tcp any any eq www permit tcp any eq www any permit tcp any any eq 443 permit tcp any eq 443 any permit tcp any any eq 8080 permit tcp any eq 8080 any permit tcp any any eq 9100 permit tcp any eq 9100 any ip access-list extended interactive permit tcp any any range 50001 53100 permit tcp any any range 1001 1255 permit tcp any any range 9001 12100 permit tcp any any eq telnet permit tcp any range 50001 53100 any permit tcp any range 1001 1255 any permit tcp any eq telnet any permit tcp any any eq 771 permit tcp any eq 771 any permit tcp any range 9001 12100 any ip access-list extended internet_in permit icmp any any echo-reply permit icmp any any echo permit icmp any any unreachable permit icmp any any administratively-prohibited permit icmp any any packet-too-big permit icmp any any time-exceeded permit esp any any permit udp any any eq isakmp permit gre any any deny ip any any log ip access-list extended nonat deny ip host 1.0.22.124 host xxxxxxxxxxxxxxxx ip access-list extended privout permit ip xxxxxxxxxxxxxxxxxxxxx ip access-list extended real_time permit tcp any any range 50001 53100 permit tcp any any range 1001 1255 permit tcp any any range 9001 12100 permit tcp any any eq telnet permit tcp any range 50001 53100 any permit tcp any range 1001 1255 any permit tcp any eq telnet any permit tcp any any range 1900 1994 permit tcp any range 1900 1994 any permit tcp any any eq 771 permit tcp any eq 771 any permit tcp any range 9001 12100 any ip access-list extended vpn-primary-to-asp permit ip host 1.0.22.124 hostxxxxxxxxxxxxxxxxxxxx ! access-list 1 permit any route-map nat deny 10 match ip address nonat ! route-map nat permit 20 match ip address privout ! ! ! control-plane ! router# sho diag Slot 0: C2621XM 2FE Mainboard Port adapter, 3 ports Port adapter is analyzed Port adapter insertion time unknown EEPROM contents at hardware discovery: Hardware Revision : 4.1 PCB Serial Number : FOC09281WET Version Identifier : Product (FRU) Number : Chassis Serial Number : FTX0933A1UX Part Number : 73-7754-06 RMA History : 00 RMA Number : 0-0-0-0 Board Revision : B0 Deviation Number : 0-0 EEPROM format version 4 EEPROM contents (hex): 0x00: 04 FF 40 03 6D 41 04 01 C1 0B 46 4F 43 30 39 32 0x10: 38 31 57 45 54 89 FF FF FF FF CB 12 FF FF FF FF 0x20: FF FF FF FF FF FF FF FF FF FF FF FF FF FF C2 0B 0x30: 46 54 58 30 39 33 33 41 31 55 58 82 49 1E 4A 06 0x40: 04 00 81 00 00 00 00 42 42 30 80 00 00 00 00 FF 0x50: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x60: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x70: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF WIC Slot 0: FT1 BT8360 Hardware revision 1.3 Board revision C0 Serial number 19984275 Part number 800-03279-03 FRU Part Number WIC-1DSU-T1= Test history 0x0 RMA number 00-00-00 Connector type Wan Module EEPROM format version 2 EEPROM contents (hex): 0x20: 02 11 01 03 01 30 EF 93 50 0C CF 03 00 00 00 00 0x30: 60 00 00 00 11 07 06 01 FF FF FF FF FF FF FF FF AIM Module in slot: 0 PCB Serial Number : FOC09201L2Y Hardware Revision : 1.0 Top Assy. Part Number : 800-24660-01 Board Revision : D0 Deviation Number : 0 Fab Version : 03 RMA Test History : 00 RMA Number : 0-0-0-0 RMA History : 00 CLEI Code : CNS931XAAA Product (FRU) Number : AIM-VPN/BPII-PLUS Version Identifier : NA EEPROM format version 4 EEPROM contents (hex): 0x00: 04 FF C1 8B 46 4F 43 30 39 32 30 31 4C 32 59 40 0x10: 04 6C 41 01 00 C0 46 03 20 00 60 54 01 42 44 30 0x20: 88 00 00 00 00 02 03 03 00 81 00 00 00 00 04 00 0x30: C6 8A 43 4E 53 39 33 31 58 41 41 41 CB 91 41 49 0x40: 4D 2D 56 50 4E 2F 42 50 49 49 2D 50 4C 55 53 89 0x50: 20 20 4E 41 FF FF FF FF FF FF FF FF FF FF FF FF 0x60: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x70: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF router# sh ver Cisco IOS Software, C2600 Software (C2600-ADVSECURITYK9-M), Version 12.4(7), RELEASE SOFTWARE (fc6) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2006 by Cisco Systems, Inc. Compiled Tue 28-Feb-06 23:32 by alnguyen ROM: System Bootstrap, Version 12.2(8r) [cmong 8r], RELEASE SOFTWARE (fc1) remote# uptime is 1 day, 11 hours, 48 minutes System returned to ROM by Reload Command at 11:09:12 edt Fri May 17 2002 System image file is "flash:c2600-advsecurityk9-mz.124-7.bin" This product contains cryptographic features and is subject to United States and local country laws governing import, export, transfer and use. Delivery of Cisco cryptographic products does not imply third-party authority to import, export, distribute or use encryption. Importers, exporters, distributors and users are responsible for compliance with U.S. and local country laws. By using this product you agree to comply with applicable laws and regulations. If you are unable to comply with U.S. and local laws, return this product immediately. A summary of U.S. laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to export@cisco.com. Cisco 2621XM (MPC860P) processor (revision 4.1) with 253952K/8192K bytes of memory. Processor board ID FTX0933A1UX M860 processor: part number 5, mask 2 2 FastEthernet interfaces 1 Serial interface 1 Virtual Private Network (VPN) Module 32K bytes of NVRAM. 32768K bytes of processor board System flash (Read/Write) Configuration register is 0x2102