Created
September 1, 2018 22:46
-
-
Save RyanBreaker/34550aa99f7c2bf791a2ccea5508efe3 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [LAN1 - 10.0.0.0/24] --- R1 --> {172.16.0.0/30 - ISP - 172.16.0.4/30} <-- R2 --- [LAN2 - 10.0.1.0/24] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| R1#show run | |
| Building configuration... | |
| Current configuration : 4002 bytes | |
| ! | |
| ! Last configuration change at 22:38:51 UTC Sat Sep 1 2018 | |
| ! | |
| version 15.6 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| no service password-encryption | |
| ! | |
| hostname R1 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| ! | |
| ! | |
| ! | |
| mmi polling-interval 60 | |
| no mmi auto-configure | |
| no mmi pvc | |
| mmi snmp-timeout 180 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| no ipv6 cef | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| redundancy | |
| ! | |
| no cdp log mismatch duplex | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| crypto isakmp policy 1 | |
| authentication pre-share | |
| crypto isakmp key cisco address 172.16.0.6 | |
| ! | |
| ! | |
| crypto ipsec transform-set MYSET esp-aes esp-sha-hmac | |
| mode tunnel | |
| ! | |
| ! | |
| ! | |
| crypto map MYMAP 1 ipsec-isakmp | |
| set peer 172.16.0.6 | |
| set transform-set MYSET | |
| match address 100 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Tunnel0 | |
| ip address 10.255.255.1 255.255.255.252 | |
| tunnel source 172.16.0.2 | |
| tunnel destination 172.16.0.6 | |
| ! | |
| interface GigabitEthernet0/0 | |
| description WAN | |
| ip address 172.16.0.2 255.255.255.252 | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| no cdp enable | |
| crypto map MYMAP | |
| ! | |
| interface GigabitEthernet0/1 | |
| description LAN | |
| ip address 10.0.0.1 255.255.255.0 | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| ! | |
| interface GigabitEthernet0/2 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| ! | |
| interface GigabitEthernet0/3 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| ! | |
| router ospf 1 | |
| network 10.0.0.1 0.0.0.0 area 0 | |
| network 10.255.255.1 0.0.0.0 area 0 | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ip route 0.0.0.0 0.0.0.0 172.16.0.1 | |
| ip ssh server algorithm encryption aes128-ctr aes192-ctr aes256-ctr | |
| ip ssh client algorithm encryption aes128-ctr aes192-ctr aes256-ctr | |
| ! | |
| ipv6 ioam timestamp | |
| ! | |
| ! | |
| access-list 100 permit ip 10.0.0.0 0.0.0.255 10.0.1.0 0.0.0.255 | |
| access-list 100 permit ip host 172.16.0.2 host 172.16.0.6 | |
| ! | |
| control-plane | |
| ! | |
| banner exec ^C | |
| ************************************************************************** | |
| * IOSv is strictly limited to use for evaluation, demonstration and IOS * | |
| * education. IOSv is provided as-is and is not supported by Cisco's * | |
| * Technical Advisory Center. Any use or disclosure, in whole or in part, * | |
| * of the IOSv Software or Documentation to any third party for any * | |
| * purposes is expressly prohibited except as otherwise authorized by * | |
| * Cisco in writing. * | |
| **************************************************************************^C | |
| banner incoming ^C | |
| ************************************************************************** | |
| * IOSv is strictly limited to use for evaluation, demonstration and IOS * | |
| * education. IOSv is provided as-is and is not supported by Cisco's * | |
| * Technical Advisory Center. Any use or disclosure, in whole or in part, * | |
| * of the IOSv Software or Documentation to any third party for any * | |
| * purposes is expressly prohibited except as otherwise authorized by * | |
| * Cisco in writing. * | |
| **************************************************************************^C | |
| banner login ^C | |
| ************************************************************************** | |
| * IOSv is strictly limited to use for evaluation, demonstration and IOS * | |
| * education. IOSv is provided as-is and is not supported by Cisco's * | |
| * Technical Advisory Center. Any use or disclosure, in whole or in part, * | |
| * of the IOSv Software or Documentation to any third party for any * | |
| * purposes is expressly prohibited except as otherwise authorized by * | |
| * Cisco in writing. * | |
| **************************************************************************^C | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| line vty 0 4 | |
| login | |
| transport input none | |
| ! | |
| no scheduler allocate | |
| ! | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| R2#show run | |
| Building configuration... | |
| Current configuration : 4002 bytes | |
| ! | |
| ! Last configuration change at 22:40:01 UTC Sat Sep 1 2018 | |
| ! | |
| version 15.6 | |
| service timestamps debug datetime msec | |
| service timestamps log datetime msec | |
| no service password-encryption | |
| ! | |
| hostname R2 | |
| ! | |
| boot-start-marker | |
| boot-end-marker | |
| ! | |
| ! | |
| ! | |
| no aaa new-model | |
| ! | |
| ! | |
| ! | |
| mmi polling-interval 60 | |
| no mmi auto-configure | |
| no mmi pvc | |
| mmi snmp-timeout 180 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip icmp rate-limit unreachable | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| no ip domain lookup | |
| ip cef | |
| no ipv6 cef | |
| ! | |
| multilink bundle-name authenticated | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| redundancy | |
| ! | |
| no cdp log mismatch duplex | |
| ! | |
| ip tcp synwait-time 5 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| crypto isakmp policy 1 | |
| authentication pre-share | |
| crypto isakmp key cisco address 172.16.0.2 | |
| ! | |
| ! | |
| crypto ipsec transform-set MYSET esp-aes esp-sha-hmac | |
| mode tunnel | |
| ! | |
| ! | |
| ! | |
| crypto map MYMAP 1 ipsec-isakmp | |
| set peer 172.16.0.2 | |
| set transform-set MYSET | |
| match address 100 | |
| ! | |
| ! | |
| ! | |
| ! | |
| ! | |
| interface Tunnel0 | |
| ip address 10.255.255.2 255.255.255.252 | |
| tunnel source 172.16.0.6 | |
| tunnel destination 172.16.0.2 | |
| ! | |
| interface GigabitEthernet0/0 | |
| description WAN | |
| ip address 172.16.0.6 255.255.255.252 | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| no cdp enable | |
| crypto map MYMAP | |
| ! | |
| interface GigabitEthernet0/1 | |
| description LAN | |
| ip address 10.0.1.1 255.255.255.0 | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| ! | |
| interface GigabitEthernet0/2 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| ! | |
| interface GigabitEthernet0/3 | |
| no ip address | |
| shutdown | |
| duplex auto | |
| speed auto | |
| media-type rj45 | |
| ! | |
| router ospf 1 | |
| network 10.0.1.1 0.0.0.0 area 0 | |
| network 10.255.255.2 0.0.0.0 area 0 | |
| ! | |
| ip forward-protocol nd | |
| ! | |
| ! | |
| no ip http server | |
| no ip http secure-server | |
| ip route 0.0.0.0 0.0.0.0 172.16.0.5 | |
| ip ssh server algorithm encryption aes128-ctr aes192-ctr aes256-ctr | |
| ip ssh client algorithm encryption aes128-ctr aes192-ctr aes256-ctr | |
| ! | |
| ipv6 ioam timestamp | |
| ! | |
| ! | |
| access-list 100 permit ip 10.0.1.0 0.0.0.255 10.0.0.0 0.0.0.255 | |
| access-list 100 permit ip host 172.16.0.6 host 172.16.0.2 | |
| ! | |
| control-plane | |
| ! | |
| banner exec ^C | |
| ************************************************************************** | |
| * IOSv is strictly limited to use for evaluation, demonstration and IOS * | |
| * education. IOSv is provided as-is and is not supported by Cisco's * | |
| * Technical Advisory Center. Any use or disclosure, in whole or in part, * | |
| * of the IOSv Software or Documentation to any third party for any * | |
| * purposes is expressly prohibited except as otherwise authorized by * | |
| * Cisco in writing. * | |
| **************************************************************************^C | |
| banner incoming ^C | |
| ************************************************************************** | |
| * IOSv is strictly limited to use for evaluation, demonstration and IOS * | |
| * education. IOSv is provided as-is and is not supported by Cisco's * | |
| * Technical Advisory Center. Any use or disclosure, in whole or in part, * | |
| * of the IOSv Software or Documentation to any third party for any * | |
| * purposes is expressly prohibited except as otherwise authorized by * | |
| * Cisco in writing. * | |
| **************************************************************************^C | |
| banner login ^C | |
| ************************************************************************** | |
| * IOSv is strictly limited to use for evaluation, demonstration and IOS * | |
| * education. IOSv is provided as-is and is not supported by Cisco's * | |
| * Technical Advisory Center. Any use or disclosure, in whole or in part, * | |
| * of the IOSv Software or Documentation to any third party for any * | |
| * purposes is expressly prohibited except as otherwise authorized by * | |
| * Cisco in writing. * | |
| **************************************************************************^C | |
| ! | |
| line con 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| line aux 0 | |
| exec-timeout 0 0 | |
| privilege level 15 | |
| logging synchronous | |
| line vty 0 4 | |
| login | |
| transport input none | |
| ! | |
| no scheduler allocate | |
| ! | |
| end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment