hostname  aasa01
enable password <removed>
passwd <removed>
names
 !
interface Vlan1
 description Inside
 nameif inside
 security-level 0
 ip address 172.x.x.x 255.255.255.0 
!
interface Vlan2
 description outside
 nameif outside
 security-level 100
 ip address 195.x.x.x.x 255.255.255.248 
!
interface Ethernet0/0
 description outside
 switchport access vlan 2
!
interface Ethernet0/1
 description inside
 speed 100
 duplex full
!
interface Ethernet0/2
 shutdown
!
interface Ethernet0/3
 shutdown
!
interface Ethernet0/4
 shutdown
!
interface Ethernet0/5
 shutdown
!
interface Ethernet0/6
 shutdown
!
interface Ethernet0/7
 shutdown
!
boot system disk0:/asa804-k8.bin
ftp mode passive

access-list  vpn extended permit ip host  172.x.x.x  host x.x.x.x 
access-list nonat extended permit ip object-group lan-subnets object-group  server  
access-list e2-vpn extended permit ip object-group lan-subnets object-group  server 

! Object group info is removed 

access-list out-in extended permit ip any any 

logging enable
logging timestamp
logging monitor debugging
logging buffered informational
mtu inside 1500
mtu outside 1500
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-613.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list nonat
nat (inside) 1 0.0.0.0 0.0.0.0
access-group out-in in interface inside
route outside 0.0.0.0 0.0.0.0 195.243.62.241 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
dynamic-access-policy-record DfltAccessPolicy
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
! VPN config is removed 


console timeout 5
 

threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
tunnel-group x.x.x.x type ipsec-l2l
tunnel-group x.x.x.x ipsec-attributes
 pre-shared-key *
tunnel-group x.x.x.x type ipsec-l2l
tunnel-group x.x.x.x  ipsec-attributes
 pre-shared-key *
!
class-map inspection_default
 match default-inspection-traffic
!
!
policy-map type inspect dns preset_dns_map
 parameters
  message-length maximum 512
policy-map global_policy
 class inspection_default
  inspect ftp 
  inspect h323 h225 
  inspect h323 ras 
  inspect netbios 
  inspect rsh 
  inspect rtsp 
  inspect skinny  
  inspect esmtp 
  inspect sqlnet 
  inspect sunrpc 
  inspect tftp 
  inspect sip  
  inspect xdmcp 
  inspect dns preset_dns_map 
!
service-policy global_policy global
prompt hostname context 
Cryptochecksum:86cd94f45da82fb77b06f6a2605c352e
: end