!This is the running config of the router: 192.168.1.1 !---------------------------------------------------------------------------- !version 12.4 no service pad service tcp-keepalives-in service tcp-keepalives-out service timestamps debug datetime msec localtime show-timezone service timestamps log datetime msec localtime show-timezone service password-encryption service sequence-numbers ! hostname Computersplus ! boot-start-marker boot-end-marker ! logging buffered 51200 debugging logging console critical enable secret 5 xxxxxxxxxxxxxxxxxx. ! no aaa new-model ! resource policy ! clock timezone PCTime -7 ip subnet-zero no ip source-route no ip dhcp use vrf connected ip dhcp excluded-address 192.168.1.1 192.168.1.100 ip dhcp excluded-address 192.168.1.112 192.168.1.254 ! ip dhcp pool sdm-pool1 import all network 192.168.1.0 255.255.255.0 dns-server 68.105.28.12 68.105.29.12 default-router 192.168.1.1 domain-name computersplus.local ! ! ip cef ip inspect name DEFAULT100 cuseeme ip inspect name DEFAULT100 ftp ip inspect name DEFAULT100 h323 ip inspect name DEFAULT100 icmp ip inspect name DEFAULT100 rcmd ip inspect name DEFAULT100 realaudio ip inspect name DEFAULT100 rtsp ip inspect name DEFAULT100 esmtp ip inspect name DEFAULT100 sqlnet ip inspect name DEFAULT100 streamworks ip inspect name DEFAULT100 tftp ip inspect name DEFAULT100 tcp ip inspect name DEFAULT100 udp ip inspect name DEFAULT100 vdolive ip tcp synwait-time 10 no ip bootp server ip domain name computersplus.local ip name-server 68.105.28.12 ip name-server 68.105.29.12 ip ssh time-out 60 ip ssh authentication-retries 2 ! ! crypto pki trustpoint TP-self-signed-673332762 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-673332762 revocation-check none rsakeypair TP-self-signed-673332762 ! ! crypto pki certificate chain TP-self-signed-673332762 certificate self-signed 01 3082024D 308201B6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 36373333 33323736 32301E17 0D303830 31303432 30303330 335A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F 532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3637 33333332 37363230 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100 B5089C7C 3E1257E1 D0AE890D 0E7C32AE DA3344EB A18CCA60 C24C063A 7697E810 C098E338 31F77111 CF684C8A 43913534 0A1A33FD 6FBA2AFA 7E809F3A 9951EB66 2F026FF8 E5F23C6C 1346ADC6 6633D7E2 169500E4 D709EA58 0D692FBB 57B9D82B 4A0AC02E 6459A8F4 FB8665FB DB872C2B 42F4AE9C BBEC2067 D342488E 7228511D 02030100 01A37730 75300F06 03551D13 0101FF04 05300301 01FF3022 0603551D 11041B30 19821779 6F75726E 616D652E 796F7572 646F6D61 696E2E63 6F6D301F 0603551D 23041830 16801443 B21FC5A3 B78B86EA 02C84172 6230CBBD 2D257830 1D060355 1D0E0416 041443B2 1FC5A3B7 8B86EA02 C8417262 30CBBD2D 2578300D 06092A86 4886F70D 01010405 00038181 002FE8C3 563C38E5 07BF5E14 90D7DCCC 6C7F25A0 6F9CD192 F6B08AEC 4BADAB79 6E7BC757 537B35A9 076AE1E6 3DBE7CC1 E0682663 CAA8FEF9 E8D18228 2FD62EAF 6AB7901D 29EE2AD8 AFE871B2 FAC64B33 3F3A8BD1 91F8C056 CA5A82E7 0D3032FB 88E0C382 B0193A60 F3DCB830 EB8833D5 7A204A9A 51CCA858 4D0EE8AB 9AABD41D 2A quit username admin privilege 15 secret 5 xxxxxxxxxxxxxxxxxxxxxxx. ! ! ! bridge irb ! ! interface FastEthernet0 ! interface FastEthernet1 ! interface FastEthernet2 ! interface FastEthernet3 ! interface FastEthernet4 description $FW_OUTSIDE$$ES_WAN$ ip address dhcp client-id FastEthernet4 ip access-group 101 in no ip redirects no ip unreachables no ip proxy-arp ip inspect DEFAULT100 out ip nat outside ip virtual-reassembly ip route-cache flow duplex auto speed auto ! interface Dot11Radio0 no ip address ! ssid ComputersPlus authentication open ! speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0 station-role root bridge-group 1 bridge-group 1 spanning-disabled ! interface Vlan1 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$ no ip address ip tcp adjust-mss 1452 bridge-group 1 ! interface BVI1 description $ES_LAN$$FW_INSIDE$ ip address 192.168.1.1 255.255.255.0 ip access-group 100 in ip nat inside ip virtual-reassembly ip tcp adjust-mss 1412 ! router rip passive-interface FastEthernet4 network 192.168.1.0 no auto-summary ! ip classless ip route 0.0.0.0 0.0.0.0 FastEthernet4 permanent ! ip http server ip http authentication local ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000 ip nat inside source list 1 interface FastEthernet4 overload ! logging trap debugging access-list 1 remark INSIDE_IF=BVI1 access-list 1 remark SDM_ACL Category=2 access-list 1 permit 192.168.1.0 0.0.0.255 access-list 100 remark auto generated by Cisco SDM Express firewall configuration access-list 100 remark SDM_ACL Category=1 access-list 100 deny ip host 255.255.255.255 any access-list 100 deny ip 127.0.0.0 0.255.255.255 any access-list 100 permit ip any any access-list 101 remark auto generated by Cisco SDM Express firewall configuration access-list 101 remark SDM_ACL Category=1 access-list 101 permit udp any eq bootps any eq bootpc access-list 101 deny ip 192.168.1.0 0.0.0.255 any access-list 101 permit icmp any any echo-reply access-list 101 permit icmp any any time-exceeded access-list 101 permit icmp any any unreachable access-list 101 deny ip 10.0.0.0 0.255.255.255 any access-list 101 deny ip 172.16.0.0 0.15.255.255 any access-list 101 deny ip 192.168.0.0 0.0.255.255 any access-list 101 deny ip 127.0.0.0 0.255.255.255 any access-list 101 deny ip host 255.255.255.255 any access-list 101 deny ip any any no cdp run ! control-plane ! bridge 1 protocol ieee bridge 1 route ip banner login ^CAuthorized access only! Disconnect IMMEDIATELY if you are not an authorized user!^C ! line con 0 login local no modem enable transport output telnet line aux 0 login local transport output telnet line vty 0 4 privilege level 15 login local transport input telnet ssh ! scheduler max-task-time 5000 scheduler allocate 4000 1000 scheduler interval 500 end