Building configuration... : Saved : PIX Version 6.3(5) interface ethernet0 10baset interface ethernet1 100full nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password aD.xLuEzAEjai8xs encrypted passwd aD.xLuEzAEjai8xs encrypted hostname pixfirewall domain-name lightfoot.fafsystems.com clock timezone EST -5 clock summer-time EDT recurring fixup protocol dns maximum-length 512 fixup protocol ftp 21 fixup protocol h323 h225 1720 fixup protocol h323 ras 1718-1719 fixup protocol http 80 fixup protocol ils 389 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol sip 5060 fixup protocol sip udp 5060 fixup protocol skinny 2000 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol tftp 69 names access-list outside_access_in permit icmp any any echo-reply access-list outside_access_in permit icmp any any unreachable access-list outside_access_in permit icmp any any time-exceeded access-list inside_outbound_nat0_acl permit ip 172.29.123.0 255.255.255.0 172.29.123.40 255.255.255.254 access-list VPNFIORDA_splitTunnelAcl permit ip 172.29.123.0 255.255.255.0 any pager lines 24 logging on logging monitor warnings logging buffered notifications logging trap warnings logging host inside 172.29.123.241 mtu outside 1500 mtu inside 1500 ip address outside dhcp setroute ip address inside 172.29.123.253 255.255.255.0 ip verify reverse-path interface outside ip audit info action alarm drop ip audit attack action alarm drop ip local pool VPNPool 172.29.123.40-172.29.123.41 pdm location 172.29.123.241 255.255.255.255 inside pdm location 172.29.123.40 255.255.255.254 outside pdm logging informational 100 pdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 0 access-list inside_outbound_nat0_acl nat (inside) 1 0.0.0.0 0.0.0.0 0 0 access-group outside_access_in in interface outside timeout xlate 0:05:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00 timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout sip-disconnect 0:02:00 sip-invite 0:03:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server TACACS+ max-failed-attempts 3 aaa-server TACACS+ deadtime 10 aaa-server RADIUS protocol radius aaa-server RADIUS max-failed-attempts 3 aaa-server RADIUS deadtime 10 aaa-server RADIUS (inside) host 172.29.123.241 ncc1701a timeout 10 aaa-server LOCAL protocol local ntp server 172.29.123.240 source inside http server enable http 172.29.123.0 255.255.255.0 inside no snmp-server location no snmp-server contact snmp-server community fafsystems no snmp-server enable traps floodguard enable sysopt connection permit-ipsec sysopt connection permit-pptp sysopt connection permit-l2tp crypto ipsec transform-set TRANS_ESP_3DES_SHA esp-3des esp-sha-hmac crypto ipsec transform-set TRANS_ESP_3DES_SHA mode transport crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac crypto dynamic-map outside_dyn_map 20 set transform-set TRANS_ESP_3DES_SHA crypto dynamic-map outside_dyn_map 40 set transform-set ESP-3DES-SHA crypto map outside_map 65535 ipsec-isakmp dynamic outside_dyn_map crypto map outside_map client authentication RADIUS crypto map outside_map interface outside isakmp enable outside isakmp key ******** address 0.0.0.0 netmask 0.0.0.0 isakmp policy 20 authentication pre-share isakmp policy 20 encryption 3des isakmp policy 20 hash sha isakmp policy 20 group 2 isakmp policy 20 lifetime 86400 vpngroup VPNFIORDA address-pool VPNPool vpngroup VPNFIORDA dns-server 172.29.123.241 216.192.223.21 vpngroup VPNFIORDA wins-server 172.29.123.241 vpngroup VPNFIORDA default-domain lightfoot.fafsystems.com vpngroup VPNFIORDA split-tunnel VPNFIORDA_splitTunnelAcl vpngroup VPNFIORDA idle-time 1800 vpngroup VPNFIORDA password ******** telnet 172.29.123.0 255.255.255.0 inside telnet timeout 5 ssh timeout 5 management-access inside console timeout 0 vpdn group L2TP-VPDN-GROUP accept dialin l2tp vpdn group L2TP-VPDN-GROUP ppp authentication mschap vpdn group L2TP-VPDN-GROUP client configuration address local VPNPool vpdn group L2TP-VPDN-GROUP client configuration dns 172.29.123.241 216.192.223.21 vpdn group L2TP-VPDN-GROUP client configuration wins 172.29.123.241 vpdn group L2TP-VPDN-GROUP client authentication aaa RADIUS vpdn group L2TP-VPDN-GROUP client accounting RADIUS vpdn group L2TP-VPDN-GROUP l2tp tunnel hello 60 vpdn group PPTP-VPDN-GROUP accept dialin pptp vpdn group PPTP-VPDN-GROUP ppp authentication mschap vpdn group PPTP-VPDN-GROUP ppp encryption mppe auto required vpdn group PPTP-VPDN-GROUP client configuration address local VPNPool vpdn group PPTP-VPDN-GROUP client configuration dns 172.29.123.241 216.192.223.21 vpdn group PPTP-VPDN-GROUP client configuration wins 172.29.123.241 vpdn group PPTP-VPDN-GROUP client authentication aaa RADIUS vpdn group PPTP-VPDN-GROUP client accounting RADIUS vpdn group PPTP-VPDN-GROUP pptp echo 60 vpdn enable outside dhcpd address 172.29.123.1-172.29.123.32 inside dhcpd dns 172.29.123.241 216.192.223.21 dhcpd wins 172.29.123.241 172.29.123.240 dhcpd lease 3600 dhcpd ping_timeout 750 dhcpd domain lightfoot.fafsystems.com dhcpd auto_config outside dhcpd enable inside terminal width 80 Cryptochecksum:3efe5370e0a22091b8152627fe60b72c : end [OK]