mtl01rt01ec#show running-config Building configuration... Current configuration : 4853 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug datetime msec service timestamps log uptime service password-encryption ! hostname xxxx ! no logging buffered no logging buffered logging rate-limit console 10 except errors enable password 7 xxxx ! username gvs17rt01tc password 7 xxxx username gvs17rt02ec password 7 xxx username tor01rt02ec password 7 xxx memory-size iomem 20 clock timezone EST -5 ip subnet-zero no ip finger no ip domain-lookup ip host test 2005 192.168.48.1 ip dhcp excluded-address 192.168.48.1 192.168.48.20 ! ip dhcp pool Montreal import all network 192.168.48.0 255.255.255.0 default-router 192.168.48.1 domain-name xxxx dns-server 172.17.2.60 xxxx netbios-name-server 172.17.2.60 172.17.2.30 netbios-node-type h-node lease 30 ! ip dhcp pool jdirect1 host 192.168.48.3 255.255.255.0 hardware-address 0030.c18c.0d83 client-name NPI8c0d83 ! ip dhcp pool mtl-wap-wan host 192.168.48.10 255.255.255.0 hardware-address 0013.1057.ea21 client-name MTLWAP57EA21 ! ip dhcp pool mtl-wap-lan host 192.168.48.11 255.255.255.0 hardware-address 0013.1057.ea20 client-name MTLWAP57EA20 ! ip dhcp pool MTL-PS1 host 192.168.48.4 255.255.255.0 hardware-address 0013.469c.9766 client-name NPI9C9766 ! no ip bootp server vpdn enable no vpdn logging ! vpdn-group 1 request-dialin protocol pppoe ! chat-script modem ABORT ERROR "" "ATDT\T" TIMEOUT 60 CONNECT \c ! ! crypto isakmp policy 18 hash md5 authentication pre-share crypto isakmp key xxxx address xxxx ! ! crypto ipsec transform-set sharks xxxx ! crypto map nolan 18 xxxxx set peer xxxx set transform-set sharks match address xxx ! ! ! ! interface Ethernet0 description Bell Canadian DSL PPPOE backup delay 10 60 backup interface Async5 no ip address no ip unreachables ip nat outside half-duplex pppoe enable pppoe-client dial-pool-number 1 no cdp enable ! interface FastEthernet0 description xxx LAN ip address 192.168.48.1 255.255.255.0 ip helper-address 172.17.2.30 ip helper-address 172.17.2.255 ip helper-address 172.17.255.255 ip helper-address 172.16.255.255 ip directed-broadcast ip nat inside no ip route-cache no ip mroute-cache speed auto ! interface Async5 ip address 170.1.1.48 255.255.255.0 no ip redirects no ip unreachables encapsulation ppp keepalive 10 dialer in-band dialer idle-timeout 300 dialer string 888888888 dialer-group 1 fair-queue 64 16 0 ppp authentication xxx ppp pap sent-username xxx password 7 xxx ! interface Dialer0 no ip address no cdp enable ! interface Dialer1 mtu 1492 ip address public ip given by isp 255.255.255.0 no ip proxy-arp ip nat outside encapsulation ppp no ip route-cache no ip mroute-cache dialer pool 1 dialer idle-timeout 0 dialer-group 1 no cdp enable ppp chap refuse ppp pap sent-username xxx password 7 xxxx crypto map nolan hold-queue 224 in ! ip nat inside source route-map nonat interface Dialer1 overload ip kerberos source-interface any ip classless no ip forward-protocol udp netbios-ns no ip forward-protocol udp netbios-dgm ip forward-protocol udp netbios-ss ip route 0.0.0.0 0.0.0.0 Dialer1 ip route 0.0.0.0 0.0.0.0 Async5 200 no ip http server ! logging facility local0 logging 172.17.1.31 access-list 110 deny ip 192.168.48.0 0.0.0.255 172.16.0.0 0.0.255.255 access-list 110 deny ip 192.168.48.0 0.0.0.255 172.17.0.0 0.0.255.255 access-list 110 permit ip 192.168.48.0 0.0.0.255 any access-list 120 permit ip 192.168.48.0 0.0.0.255 172.16.0.0 0.0.255.255 access-list 120 permit ip 192.168.48.0 0.0.0.255 172.17.0.0 0.0.255.255 access-list 121 permit ip 192.168.48.0 0.0.0.255 172.16.0.0 0.0.255.255 access-list 121 permit ip 192.168.48.0 0.0.0.255 172.17.0.0 0.0.255.255 access-list 150 permit esp host xxx host 0.0.0.0 access-list 150 permit udp host xxx host 0.0.0.0 eq isakmp access-list 150 permit ip any 192.168.48.0 0.0.0.255 route-map nonat permit 10 match ip address 110 ! snmp-server engineID local xxx snmp-server community xxx RO banner motd ^CCCCC xxr Unauthorized access is prohibited Violators will be prosecuted Welcome to Montreal ^C ! line con 0 password 7xxx login transport input none line aux 0 password 7 xxx autoselect ppp modem InOut modem autoconfigure discovery transport input all autohangup speed 115200 flowcontrol hardware line vty 0 4 password 7 xxx login ! scheduler allocate 4000 1000 end