=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2017.03.06 13:34:58 =~=~=~=~=~=~=~=~=~=~=~= sh run : Saved : ASA Version 9.0(3) ! command-alias exec proliant_DL380g5ilo ping 10.10.50.11 command-alias exec top_DL360g5_vmwr ping 10.10.50.101 command-alias exec bottom_DL360g5_vmwr ping 10.10.50.102 command-alias exec top_DL360g5_ilo ping 10.10.50.12 command-alias exec bottom_DL360g5_ilo ping 10.10.50.13 command-alias exec brocade ping 10.10.50.5 command-alias exec extreme ping 10.10.50.4 command-alias exec nexenta_DL380g5 ping 10.10.50.200 command-alias exec ik show crypto isakmp sa command-alias exec is show crypto ipsec sa command-alias exec si show int ip br command-alias exec who show crypto ipsec sa | include (addr|ident|peer|endpt) terminal width 120 hostname Softsmart enable password Q6tewv2Of1PWX4K8 encrypted xlate per-session deny tcp any4 any4 xlate per-session deny tcp any4 any6 xlate per-session deny tcp any6 any4 xlate per-session deny tcp any6 any6 xlate per-session deny udp any4 any4 eq domain xlate per-session deny udp any4 any6 eq domain xlate per-session deny udp any6 any4 eq domain xlate per-session deny udp any6 any6 eq domain passwd iu43U6c0TaanERLf encrypted names name 10.10.201.0 Vadodara-Net description Subnet for Vadodara name 207.166.133.0 Colorado name 64.60.190.8 Titan ip local pool ra-pool 10.10.50.200-10.10.50.250 mask 255.255.254.0 ip local pool test 192.168.1.10-192.168.1.100 mask 255.255.255.0 ! interface GigabitEthernet0/0 nameif inside security-level 100 ip address 10.10.50.1 255.255.254.0 ! interface GigabitEthernet0/1 nameif outside security-level 0 ip address 67.203.13.146 255.255.255.240 ! interface GigabitEthernet0/2 shutdown no nameif no security-level no ip address ! interface GigabitEthernet0/3 description P2P connection to 5520 nameif interconnect security-level 100 ip address 172.16.30.202 255.255.255.252 ! interface Management0/0 management-only nameif management security-level 100 no ip address ! boot system disk0:/asa903-k8.bin ftp mode passive clock timezone PST -8 clock summer-time PDT recurring dns domain-lookup outside dns server-group DefaultDNS name-server 4.2.2.1 same-security-traffic permit inter-interface same-security-traffic permit intra-interface object network Titan_1 subnet 64.60.190.8 255.255.255.248 description Created during name migration object network Colorado subnet 207.166.133.0 255.255.255.0 description Created during name migration object network obj-10.10.50.0 subnet 10.10.50.0 255.255.254.0 object network obj-10.10.30.0 subnet 10.10.30.0 255.255.254.0 object network obj-10.10.32.0 subnet 10.10.32.0 255.255.254.0 object network obj-192.168.1.0 subnet 192.168.1.0 255.255.255.0 object network obj-172.16.20.0 subnet 172.16.20.0 255.255.255.0 object network obj-192.168.4.0 subnet 192.168.4.0 255.255.255.0 object network obj-10.10.40.0 subnet 10.10.40.0 255.255.254.0 object network obj-10.10.44.0 subnet 10.10.44.0 255.255.252.0 object network Vadodara-Net subnet 10.10.201.0 255.255.255.0 object network obj-10.10.50.192 subnet 10.10.50.192 255.255.255.192 object network obj-10.10.22.0 subnet 10.10.22.0 255.255.254.0 object network obj-10.10.70.0 subnet 10.10.70.0 255.255.254.0 object network obj-10.10.10.0 subnet 10.10.10.0 255.255.255.0 object network obj-10.10.60.0 subnet 10.10.60.0 255.255.254.0 object network obj-10.10.1.0 subnet 10.10.1.0 255.255.255.0 object network obj-10.59.1.0 subnet 10.59.1.0 255.255.255.192 object network obj-10.59.1.64 subnet 10.59.1.64 255.255.255.192 object network obj-10.10.20.0 subnet 10.10.20.0 255.255.255.0 object network obj-10.10.51.40 host 10.10.51.40 object network obj-10.10.50.115 host 10.10.50.115 object network obj-10.10.51.20 host 10.10.51.20 object network obj-10.10.51.42 host 10.10.51.42 object network obj-10.10.51.41 host 10.10.51.41 object network obj-10.10.51.60 host 10.10.51.60 object network obj-10.10.51.69 host 10.10.51.69 object network obj-10.10.51.12 host 10.10.51.12 object network obj-10.10.50.40 host 10.10.50.40 object network obj-10.10.50.248 host 10.10.50.248 object network obj-10.10.51.48 host 10.10.51.48 object network obj-10.10.51.22 host 10.10.51.22 object network obj-10.10.51.206 host 10.10.51.206 object network obj-10.10.50.221 host 10.10.50.221 object network obj-10.10.51.232 host 10.10.51.232 object network obj-10.10.50.93 host 10.10.50.93 object network obj-10.10.51.240 host 10.10.51.240 object network obj-10.10.51.21 host 10.10.51.21 object network obj-10.10.50.60 host 10.10.50.60 object network obj-10.10.51.13 host 10.10.51.13 object network obj-10.10.51.55 host 10.10.51.55 object network obj-10.10.51.14 host 10.10.51.14 object network obj-10.10.51.90 host 10.10.51.90 object network obj-10.10.51.10 host 10.10.51.10 object network obj-10.10.51.241 host 10.10.51.241 object network obj-10.10.51.44 host 10.10.51.44 object network obj_any subnet 0.0.0.0 0.0.0.0 object network NETWORK_OBJ_10.10.50.192_26 subnet 10.10.50.192 255.255.255.192 object-group network NETWORK_OBJ_10.10.30.0_23 object-group network NETWORK_OBJ_10.10.50.0_23 object-group network NETWORK_OBJ_10.10.44.0_22 object-group network NETWORK_OBJ_192.168.4.0_24 object-group service RDP tcp port-object eq 3389 object-group network NETWORK_OBJ_10.10.40.0_21 object-group service 8080 tcp port-object eq 8080 object-group network sip-allow description allowed sipservers network-object 64.2.142.0 255.255.255.0 network-object 66.241.96.0 255.255.255.0 network-object 66.241.97.0 255.255.255.0 network-object 66.241.99.0 255.255.255.0 network-object 66.241.107.0 255.255.255.0 network-object 66.241.109.0 255.255.255.0 network-object 140.239.143.0 255.255.255.0 network-object 207.166.136.0 255.255.255.0 network-object 207.166.137.0 255.255.255.0 network-object 67.227.17.0 255.255.255.0 network-object 207.166.138.0 255.255.255.0 network-object 66.241.111.0 255.255.255.0 network-object 199.199.12.0 255.255.255.0 object-group network Titan network-object object Titan_1 object-group network colorado network-object object Colorado object-group network softsmart network-object 10.10.50.0 255.255.254.0 network-object host 172.16.30.202 object-group network privatis network-object 10.10.80.0 255.255.254.0 network-object 10.10.90.0 255.255.255.0 network-object host 172.16.30.201 object-group service DM_INLINE_TCP_1 tcp port-object eq www port-object eq https object-group service DM_INLINE_UDP_1 udp port-object range 10000 60000 port-object eq sip object-group service DM_INLINE_TCP_2 tcp port-object eq www port-object eq https object-group service DM_INLINE_TCP_3 tcp port-object eq www port-object eq https object-group service DM_INLINE_UDP_2 udp port-object range 10000 60000 port-object eq sip object-group service DM_INLINE_UDP_3 udp port-object range 10000 60000 port-object eq sip object-group service DM_INLINE_TCP_4 tcp port-object eq www port-object eq https object-group service DM_INLINE_UDP_4 udp port-object range 10000 20000 port-object eq sip object-group service DM_INLINE_TCP_5 tcp port-object eq www port-object eq https object-group service DM_INLINE_UDP_5 udp port-object range 10000 20000 port-object eq sip object-group service DM_INLINE_TCP_6 tcp port-object eq www port-object eq https object-group service DM_INLINE_UDP_6 udp port-object range 10000 20000 port-object eq sip object-group service DM_INLINE_TCP_7 tcp port-object eq www port-object eq https object-group service DM_INLINE_UDP_7 udp port-object range 10000 20000 port-object eq sip object-group network Blacklist network-object 77.3.0.0 255.255.0.0 network-object 91.57.0.0 255.255.0.0 network-object host 91.200.13.21 network-object 91.200.12.0 255.255.255.0 network-object 91.200.13.0 255.255.255.0 network-object 69.73.30.0 255.255.255.0 network-object host 162.216.114.175 network-object 46.37.24.0 255.255.255.0 network-object 211.214.161.0 255.255.255.0 network-object 95.110.235.0 255.255.255.0 network-object 27.254.96.0 255.255.255.0 network-object 93.118.175.0 255.255.255.0 network-object 190.151.10.0 255.255.255.0 network-object 194.85.91.0 255.255.255.0 network-object 5.61.35.0 255.255.255.0 network-object 91.134.167.0 255.255.255.0 network-object 188.87.225.0 255.255.255.0 network-object 23.239.85.0 255.255.255.0 network-object host 195.154.46.30 network-object 163.172.197.0 255.255.255.0 object-group network powered description powered group ips network-object 216.240.44.0 255.255.255.0 network-object host 115.111.70.250 network-object host 159.203.102.27 network-object host 216.240.44.41 network-object host 67.227.0.106 object-group service DM_INLINE_SERVICE_1 object-group network all-internal network-object 10.10.22.0 255.255.254.0 network-object 10.10.50.0 255.255.254.0 network-object 10.10.51.0 255.255.255.0 network-object 10.10.60.0 255.255.254.0 object-group service DM_INLINE_SERVICE_2 object-group service DM_INLINE_TCP_9 tcp port-object eq www port-object eq https object-group service DM_INLINE_TCP_8 tcp port-object eq www port-object eq https port-object eq ftp access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.30.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.32.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 192.168.1.0 255.255.255.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 172.16.20.0 255.255.255.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 192.168.4.0 255.255.255.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.40.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.44.0 255.255.252.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 object Vadodara-Net access-list vpn-nat0 extended permit ip any4 10.10.50.192 255.255.255.192 access-list vpn-nat0 extended permit ip any4 10.10.22.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.70.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.10.0 255.255.255.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.22.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.60.0 255.255.254.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.1.0 255.255.255.0 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.50.192 255.255.255.192 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.59.1.0 255.255.255.192 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.59.1.64 255.255.255.192 access-list vpn-nat0 extended permit ip 10.10.50.0 255.255.254.0 10.10.20.0 255.255.255.0 access-list vpn-nat0 extended permit ip object-group softsmart object-group privatis access-list softsmartgroup standard permit 10.10.70.0 255.255.254.0 access-list softsmartgroup standard permit 10.10.50.0 255.255.254.0 access-list softsmartgroup standard permit 10.10.60.0 255.255.254.0 access-list softsmartgroup standard permit 10.10.22.0 255.255.254.0 access-list softsmartgroup standard permit 192.168.4.0 255.255.255.0 access-list softsmartgroup standard permit 10.10.40.0 255.255.254.0 access-list focusgroup standard permit 10.10.40.0 255.255.252.0 access-list focusgroup standard permit 10.10.50.0 255.255.254.0 access-list focusgroup standard permit 10.10.22.0 255.255.254.0 access-list focusgroup standard permit 10.10.60.0 255.255.254.0 access-list focusgroup standard permit 10.10.30.0 255.255.254.0 access-list focusgroup standard permit 10.10.40.0 255.255.248.0 access-list focusgroup standard permit 172.16.20.0 255.255.255.0 access-list focusgroup standard permit 192.168.4.0 255.255.255.0 access-list focusgroup standard permit 10.10.70.0 255.255.254.0 access-list inside_access_in extended permit tcp any4 host 67.227.17.58 eq www access-list mastergroup standard permit 10.10.22.0 255.255.254.0 access-list mastergroup standard permit 10.10.50.0 255.255.254.0 access-list mastergroup standard permit 10.10.60.0 255.255.254.0 access-list mastergroup standard permit 10.10.30.0 255.255.254.0 access-list mastergroup standard permit 10.10.40.0 255.255.248.0 access-list mastergroup standard permit 172.16.20.0 255.255.255.0 access-list mastergroup standard permit 192.168.4.0 255.255.255.0 access-list mastergroup standard permit 10.10.70.0 255.255.254.0 access-list mastergroup standard permit 10.10.80.0 255.255.254.0 access-list inb extended permit udp any4 host 67.227.17.57 eq sip access-list decepticons extended permit ip 10.10.50.0 255.255.254.0 10.10.10.0 255.255.255.0 access-list decepticons2 extended permit ip 10.10.50.0 255.255.254.0 10.10.22.0 255.255.254.0 access-list decepticons2 extended permit ip 10.10.50.0 255.255.254.0 10.10.60.0 255.255.254.0 access-list decepticons2 extended permit ip 192.168.1.0 255.255.255.0 10.10.60.0 255.255.254.0 access-list decepticons2 extended permit ip 192.168.1.0 255.255.255.0 10.10.22.0 255.255.254.0 access-list softsmart-calpop extended permit ip 10.10.50.0 255.255.254.0 10.10.1.0 255.255.255.0 access-list lax-split-tunnel standard permit 10.10.22.0 255.255.254.0 access-list lax-split-tunnel standard permit 10.10.50.0 255.255.254.0 access-list lax-split-tunnel standard permit 10.10.60.0 255.255.254.0 access-list lax-split-tunnel standard permit 172.16.20.0 255.255.255.0 access-list lax-split-tunnel standard permit 10.10.40.0 255.255.248.0 access-list lax-split-tunnel standard permit 10.10.70.0 255.255.254.0 access-list 59quadranet extended permit ip 10.10.50.0 255.255.254.0 10.59.1.0 255.255.255.192 access-list vancouv-la extended permit ip 10.10.50.0 255.255.254.0 10.10.70.0 255.255.254.0 access-list william standard permit host 10.10.41.15 access-list william standard permit host 10.10.41.43 access-list william standard permit host 10.10.41.44 access-list william standard permit host 10.10.51.14 access-list william standard permit host 10.10.51.45 access-list william standard permit host 10.10.51.46 access-list inside extended permit tcp host 202.157.177.23 any4 eq ssh access-list outside_cryptomap_2 extended permit ip 10.10.50.0 255.255.254.0 object Vadodara-Net access-list developergroup standard permit 10.10.50.0 255.255.254.0 access-list admingroup standard permit 10.10.50.0 255.255.254.0 access-list admingroup standard permit 10.10.60.0 255.255.254.0 access-list admingroup standard permit 10.10.70.0 255.255.254.0 access-list admingroup standard permit 10.10.80.0 255.255.254.0 access-list admingroup standard permit 10.10.22.0 255.255.254.0 access-list 59coloat extended permit ip 10.10.50.0 255.255.254.0 10.59.1.64 255.255.255.192 access-list 10 standard permit 10.10.50.0 255.255.254.0 access-list decepticons3 extended permit ip 10.10.50.0 255.255.254.0 10.10.30.0 255.255.254.0 access-list decepticons192-1 extended permit ip 10.10.50.0 255.255.254.0 192.168.4.0 255.255.255.0 access-list decepticons8 extended permit ip 10.10.50.0 255.255.254.0 172.16.20.0 255.255.255.0 access-list decepticons9 extended permit ip 10.10.50.0 255.255.254.0 10.10.40.0 255.255.254.0 access-list outside_1_cryptomap extended permit ip 10.10.50.0 255.255.254.0 192.168.4.0 255.255.255.0 access-list decepticons4 extended permit ip 10.10.50.0 255.255.254.0 10.10.44.0 255.255.252.0 access-list 20 standard permit 10.10.50.0 255.255.254.0 access-list 20 standard permit 10.10.60.0 255.255.254.0 access-list 20 standard permit 10.10.22.0 255.255.254.0 access-list 20 standard permit 10.10.70.0 255.255.254.0 access-list lax-split-tunnel1 standard permit 10.10.50.0 255.255.254.0 access-list lax-split-tunnel2 standard permit 10.10.50.0 255.255.254.0 access-list lax-split-tunnel2 standard permit 10.10.60.0 255.255.254.0 access-list lax-split-tunnel2 standard permit 10.10.22.0 255.255.254.0 access-list lax-split-tunnel3 standard permit 10.10.30.0 255.255.254.0 access-list lax-split-tunnel3 standard permit 10.10.50.0 255.255.254.0 access-list lax-split-tunnel3 standard permit 10.10.40.0 255.255.248.0 access-list controlboxvpngroup standard permit 10.10.22.0 255.255.254.0 access-list controlboxvpngroup standard permit 10.10.50.0 255.255.254.0 access-list controlboxvpngroup standard permit 10.10.60.0 255.255.254.0 access-list controlboxvpngroup standard permit 10.10.70.0 255.255.254.0 access-list interconnect extended permit ip object-group softsmart object-group privatis access-list interconnect extended permit ip object-group privatis object-group softsmart access-list inside_access_in_1 extended permit tcp host 10.10.51.249 host 104.206.220.89 eq ssh inactive access-list inside_access_in_1 extended permit tcp host 10.10.51.249 object-group powered eq ssh inactive access-list inside_access_in_1 extended permit udp host 10.10.51.249 object-group sip-allow range 1 65535 inactive access-list inside_access_in_1 extended permit udp host 10.10.51.249 object-group powered range 1 65535 inactive access-list inside_access_in_1 extended permit tcp host 10.10.51.249 any4 eq www inactive access-list inside_access_in_1 extended permit tcp host 10.10.51.249 any4 eq https inactive access-list inside_access_in_1 extended deny udp host 10.10.51.249 any4 gt 0 inactive access-list inside_access_in_1 extended permit ip any4 any4 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound remark BLACKLIST access-list inbound extended deny ip object-group Blacklist any4 access-list inbound extended permit icmp any4 any4 echo access-list inbound extended permit icmp any4 any4 echo-reply access-list inbound extended permit icmp any4 any4 traceroute log access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound extended permit ip host 116.199.170.18 any4 access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound extended permit tcp host 67.227.0.106 host 10.10.51.60 eq ssh access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound extended permit tcp any4 host 10.10.51.60 object-group DM_INLINE_TCP_3 access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound extended deny udp any4 host 10.10.51.60 object-group DM_INLINE_UDP_3 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound extended permit tcp host 67.227.0.106 host 10.10.50.248 eq ssh inactive access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound extended permit tcp any4 host 10.10.50.248 object-group DM_INLINE_TCP_2 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound extended permit tcp any4 host 10.10.50.248 eq 3434 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound extended deny udp any4 host 10.10.50.248 object-group DM_INLINE_UDP_2 access-list inbound remark IIS MACINE access-list inbound extended permit tcp host 67.227.0.106 host 10.10.51.241 eq ssh inactive access-list inbound remark IIS MACINE access-list inbound extended permit tcp any4 host 10.10.51.241 object-group DM_INLINE_TCP_1 access-list inbound remark POWERED - 10.10.51.244 - 08-12-2016 access-list inbound extended deny udp any4 host 10.10.51.241 object-group DM_INLINE_UDP_1 access-list inbound remark POWERED - 10.10.51.206 - 08-12-2016 access-list inbound extended permit tcp host 67.227.0.106 host 10.10.51.206 eq ssh access-list inbound remark POWERED - 10.10.51.206 - 08-12-2016 access-list inbound extended permit tcp any4 host 10.10.51.206 object-group DM_INLINE_TCP_4 access-list inbound remark POWERED - 10.10.51.206 - 08-12-2016 access-list inbound extended deny udp any4 host 10.10.51.206 object-group DM_INLINE_UDP_4 access-list inbound remark POWERED - 10.10.50.221 - 08-12-2016 access-list inbound extended permit tcp host 67.227.0.106 host 10.10.50.221 eq ssh access-list inbound remark POWERED - 10.10.50.221 - 08-12-2016 access-list inbound extended permit tcp any4 host 10.10.50.221 object-group DM_INLINE_TCP_5 access-list inbound remark POWERED - 10.10.50.221 - 08-12-2016 access-list inbound extended deny udp any4 host 10.10.50.221 object-group DM_INLINE_UDP_5 access-list inbound remark POWERED - 10.10.50.232 - 08-12-2016 access-list inbound extended permit tcp host 67.227.0.106 host 10.10.51.232 eq ssh access-list inbound remark POWERED - 10.10.50.232 - 08-12-2016 access-list inbound extended permit tcp any4 host 10.10.51.232 object-group DM_INLINE_TCP_6 access-list inbound remark POWERED - 10.10.50.232 - 08-12-2016 access-list inbound extended deny udp any4 host 10.10.51.232 object-group DM_INLINE_UDP_6 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound extended permit tcp host 67.227.0.106 host 10.10.51.240 eq ssh access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound extended permit tcp any4 host 10.10.51.240 object-group DM_INLINE_TCP_7 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound extended permit udp any4 host 10.10.51.240 object-group DM_INLINE_UDP_7 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound extended permit udp host 13.93.155.18 host 10.10.51.90 gt 0 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound extended permit tcp any4 host 10.10.51.90 object-group DM_INLINE_TCP_9 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound extended permit tcp any4 host 10.10.51.90 eq ssh access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound extended permit udp object-group powered host 10.10.51.90 range 1 65535 inactive access-list inbound extended permit tcp any4 host 10.10.51.40 eq ftp log access-list inbound extended permit tcp host 116.199.170.18 host 10.10.50.93 eq ssh log access-list inbound extended permit udp host 116.199.170.18 host 10.10.51.13 gt 0 log access-list inbound extended permit udp host 116.72.250.5 host 10.10.51.13 gt 0 log access-list inbound extended permit udp host 64.60.180.106 host 10.10.51.13 gt 0 log access-list inbound extended permit ip host 113.193.167.128 host 10.10.51.13 log access-list inbound extended permit udp any4 host 10.10.50.93 eq sip access-list inbound extended permit udp any4 host 10.10.50.93 range 10000 20000 access-list inbound extended permit tcp any4 host 10.10.51.40 eq ftp-data log access-list inbound extended permit tcp any4 host 10.10.51.40 eq www access-list inbound extended permit tcp any4 host 10.10.51.40 eq https access-list inbound extended permit tcp any4 host 10.10.51.232 eq www access-list inbound extended permit tcp any4 host 10.10.51.232 eq https access-list inbound extended permit tcp any4 host 10.10.51.42 eq www access-list inbound extended permit tcp any4 host 10.10.51.42 eq https access-list inbound extended permit tcp any4 host 10.10.51.41 eq www access-list inbound extended permit tcp any4 host 10.10.51.41 eq https access-list inbound extended permit tcp any4 host 67.203.13.159 eq www access-list inbound extended permit tcp any4 host 67.203.13.159 eq https access-list inbound extended permit tcp any4 host 10.10.51.10 eq sip access-list inbound extended permit tcp any4 host 10.10.51.10 eq 8006 access-list inbound extended permit tcp any4 host 10.10.51.10 eq 7990 access-list inbound extended permit tcp any4 host 10.10.51.10 eq www access-list inbound extended permit tcp any4 host 10.10.51.10 eq https access-list inbound extended permit tcp any4 host 10.10.51.12 eq www access-list inbound extended permit tcp any4 host 10.10.51.12 eq https access-list inbound extended permit tcp any4 host 10.10.50.40 eq www access-list inbound extended permit tcp any4 host 10.10.50.40 eq https access-list inbound extended permit tcp any4 host 10.10.50.40 eq domain access-list inbound extended permit udp any4 host 10.10.50.40 eq domain access-list inbound extended permit udp any4 host 67.227.0.72 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.72 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.73 eq sip access-list inbound extended permit udp any4 host 67.227.0.73 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.73 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.74 eq sip access-list inbound extended permit udp any4 host 67.227.0.74 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.74 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.76 eq sip access-list inbound extended permit udp any4 host 67.227.0.76 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.76 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.77 eq sip access-list inbound extended permit udp any4 host 67.227.0.77 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.77 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.79 eq sip access-list inbound extended permit udp any4 host 67.227.0.79 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.79 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.85 eq sip access-list inbound extended permit udp any4 host 67.227.0.85 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.85 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.72 eq sip access-list inbound extended permit tcp any4 host 67.227.0.72 eq www access-list inbound extended permit tcp any4 host 67.227.0.72 eq https access-list inbound extended permit tcp any4 host 67.227.0.79 eq www access-list inbound extended permit tcp any4 host 67.227.0.79 eq https access-list inbound extended permit tcp any4 host 67.227.0.73 eq www access-list inbound extended permit tcp any4 host 67.227.0.73 eq https access-list inbound extended permit udp any4 host 67.227.0.83 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.84 eq www access-list inbound extended permit tcp any4 host 67.227.0.84 eq https access-list inbound extended permit tcp any4 host 67.227.0.84 eq sip access-list inbound extended permit udp any4 host 67.227.0.84 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.84 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.80 eq www access-list inbound extended permit tcp any4 host 67.227.0.80 eq https access-list inbound extended permit tcp any4 host 67.227.0.80 eq sip access-list inbound extended permit udp any4 host 67.227.0.80 range sip 5082 access-list inbound extended permit udp any4 host 10.10.51.55 range 10000 40000 access-list inbound extended permit udp any4 host 10.10.51.55 eq sip access-list inbound extended permit udp any4 host 10.10.51.55 eq 5080 access-list inbound extended permit udp any4 host 10.10.51.55 eq 5061 access-list inbound extended permit tcp any4 host 10.10.50.60 eq imap4 access-list inbound extended permit tcp any4 host 10.10.51.14 eq 8006 access-list inbound extended permit tcp any4 host 10.10.51.14 eq 7990 access-list inbound extended permit tcp any4 host 10.10.51.14 eq https access-list inbound extended permit tcp any4 host 10.10.51.14 eq www access-list inbound extended permit tcp any4 host 10.10.51.14 eq imap4 access-list inbound extended permit tcp any4 host 10.10.51.14 eq 587 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq imap4 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 993 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq www access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 object-group 8080 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 4003 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 4005 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 4007 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 4009 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.51.60 eq https access-list inbound extended permit udp object Colorado any4 gt 0 access-list inbound extended permit tcp any4 host 67.227.0.74 eq https access-list inbound extended permit tcp any4 host 67.227.0.74 eq www access-list inbound extended permit tcp any4 host 67.227.0.76 eq www access-list inbound extended permit tcp any4 host 67.227.0.76 eq https access-list inbound extended permit tcp any4 host 67.227.0.77 eq https access-list inbound extended permit tcp any4 host 67.227.0.77 eq www access-list inbound extended permit tcp any4 host 67.227.0.85 eq www access-list inbound extended permit tcp any4 host 67.227.0.85 eq https access-list inbound extended permit tcp any4 host 67.227.0.75 eq sip access-list inbound extended permit udp any4 host 67.227.0.75 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.75 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.87 eq sip access-list inbound extended permit udp any4 host 67.227.0.87 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.87 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.87 eq www access-list inbound extended permit tcp any4 host 67.227.0.87 eq https access-list inbound extended permit tcp any4 host 67.227.0.75 eq https access-list inbound extended permit tcp any4 host 67.227.0.75 eq www access-list inbound extended permit tcp any4 host 67.227.0.78 eq sip access-list inbound extended permit udp any4 host 67.227.0.78 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.78 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.78 eq www access-list inbound extended permit tcp any4 host 67.227.0.78 eq https access-list inbound extended permit tcp any4 host 67.227.0.88 eq www access-list inbound extended permit tcp any4 host 67.227.0.88 eq https access-list inbound extended permit tcp any4 host 67.227.0.88 eq sip access-list inbound extended permit udp any4 host 67.227.0.88 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.88 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.81 eq www access-list inbound extended permit tcp any4 host 67.227.0.81 eq https access-list inbound extended permit tcp any4 host 67.227.0.81 eq sip access-list inbound extended permit udp any4 host 67.227.0.81 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.81 range 10000 60000 access-list inbound extended permit udp any4 host 67.227.0.82 range 10000 60000 access-list inbound extended permit udp any4 host 67.227.0.82 range sip 5082 access-list inbound extended permit tcp any4 host 67.227.0.82 eq sip access-list inbound extended permit tcp any4 host 67.227.0.82 eq www access-list inbound extended permit tcp any4 host 67.227.0.82 eq https access-list inbound extended permit tcp any4 host 67.227.0.83 eq https access-list inbound extended permit tcp any4 host 67.227.0.83 eq www access-list inbound extended permit tcp any4 host 67.227.0.83 eq sip access-list inbound extended permit udp any4 host 67.227.0.83 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.80 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.86 eq www access-list inbound extended permit tcp any4 host 67.227.0.86 eq https access-list inbound extended permit tcp any4 host 67.227.0.86 eq sip access-list inbound extended permit udp any4 host 67.227.0.86 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.86 range 10000 60000 access-list inbound extended permit tcp any4 host 67.227.0.70 eq sip access-list inbound extended permit udp any4 host 67.227.0.70 range sip 5082 access-list inbound extended permit udp any4 host 67.227.0.70 range 10000 60000 access-list inbound extended permit tcp any4 host 10.10.51.44 eq www access-list inbound extended permit tcp any4 host 10.10.51.44 eq https access-list inbound extended permit tcp any4 host 10.10.51.44 eq 4545 access-list inbound extended permit tcp any4 host 10.10.50.40 eq ftp access-list inbound extended permit tcp any4 host 10.10.50.40 eq ftp-data access-list inbound extended permit tcp any4 host 10.10.50.40 eq smtp access-list inbound extended permit tcp any4 host 10.10.50.40 eq 2087 access-list inbound extended permit tcp any4 host 10.10.50.40 eq 2083 access-list inbound extended permit tcp host 133.242.169.131 any4 eq ssh access-list inbound extended permit tcp 182.18.0.0 255.255.0.0 any4 access-list inbound extended permit tcp any4 host 10.10.51.48 eq www access-list inbound extended permit tcp any4 host 10.10.51.48 eq https access-list inbound extended permit tcp any4 host 10.10.51.48 eq ftp access-list inbound extended permit tcp any4 host 10.10.51.20 eq 3333 access-list inbound extended permit tcp any4 host 10.10.51.21 eq 3434 access-list inbound extended permit tcp any4 host 10.10.51.21 eq www access-list inbound extended permit tcp any4 host 10.10.51.21 eq https access-list inbound extended permit icmp any4 host 10.10.50.60 access-list inbound extended permit tcp any4 host 10.10.50.60 eq smtp access-list inbound extended permit tcp any4 host 10.10.51.13 eq www access-list inbound extended permit tcp any4 host 10.10.51.13 eq 8080 access-list inbound extended permit tcp any4 host 10.10.51.20 eq www access-list inbound extended permit tcp any4 host 10.10.51.20 eq 3434 access-list inbound extended permit udp host 146.20.47.141 host 10.10.51.20 range netbios-ns netbios-dgm access-list inbound extended permit udp host 146.20.47.143 host 10.10.51.40 range netbios-ns netbios-dgm access-list inbound extended permit udp host 13.93.208.230 any4 gt 0 access-list inbound extended permit tcp host 146.20.47.141 host 10.10.51.20 eq netbios-ssn access-list inbound extended permit tcp host 146.20.47.143 host 10.10.51.40 eq netbios-ssn access-list inbound extended permit tcp host 146.20.47.141 host 10.10.51.20 eq 445 access-list inbound extended permit tcp host 146.20.47.143 host 10.10.51.40 eq 445 access-list inbound extended permit tcp any4 host 10.10.50.115 eq www access-list inbound extended permit tcp any4 host 10.10.50.115 eq https access-list inbound extended permit tcp any4 host 67.203.13.145 eq www access-list inbound extended permit tcp any4 host 67.203.13.145 eq https access-list inbound extended permit tcp any4 host 67.203.13.145 eq 4545 access-list inbound extended permit tcp any4 host 10.10.50.115 eq 5022 access-list inbound extended permit tcp any4 host 10.10.50.115 eq 5023 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 7110 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 7995 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 7993 access-list inbound extended permit tcp any4 host 67.203.13.145 range www https inactive access-list inbound extended permit udp host 13.93.155.18 host 10.10.51.40 gt 0 access-list inbound extended permit tcp any4 host 10.10.50.93 eq www log access-list inbound extended permit tcp any4 host 10.10.51.44 eq 3389 access-list inbound extended permit tcp any4 host 10.10.51.44 eq ftp access-list inbound extended permit tcp any4 host 10.10.51.22 eq www access-list inbound extended permit tcp any4 host 10.10.51.22 eq https access-list inbound extended permit tcp any4 host 10.10.51.22 eq ftp access-list inbound extended permit tcp any4 host 10.10.51.12 eq 8080 access-list inbound extended permit tcp any4 host 10.10.51.13 eq 5038 access-list inbound extended permit tcp any4 host 10.10.51.13 eq 5039 access-list inbound extended permit tcp any4 host 10.10.51.13 eq 4573 access-list inbound extended permit tcp any4 host 10.10.51.13 range 4575 4584 access-list inbound extended permit udp object-group sip-allow host 10.10.51.13 range 10000 20000 access-list inbound extended permit udp object-group sip-allow host 10.10.51.13 eq sip access-list inbound extended permit udp object-group sip-allow host 10.10.51.13 eq 5080 access-list inbound extended permit tcp any4 host 10.10.51.12 eq 1000 access-list inbound extended permit tcp any4 host 10.10.51.55 eq www access-list inbound extended permit tcp any4 host 10.10.51.55 eq 8088 access-list inbound extended permit tcp any4 host 10.10.51.55 eq https access-list inbound extended permit tcp any4 host 10.10.51.55 eq smtp access-list inbound extended permit tcp any4 host 10.10.51.55 eq ftp access-list inbound extended permit tcp any4 host 10.10.51.55 eq 5038 access-list inbound extended permit tcp any4 host 10.10.51.55 eq 5039 access-list inbound extended permit tcp any4 host 10.10.51.55 range 4073 4076 access-list inbound extended permit tcp any4 host 10.10.51.22 eq 3434 access-list inbound extended permit tcp any4 host 10.10.51.22 eq 5022 access-list inbound extended permit tcp any4 host 10.10.51.22 eq 5025 access-list inbound extended permit udp host 40.112.188.18 any4 gt 0 access-list inbound extended permit udp host 64.60.180.106 any4 gt 0 access-list inbound extended permit udp host 64.60.190.13 any4 gt 0 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 7071 access-list inbound extended permit tcp any4 host 10.10.51.22 eq 5024 access-list inbound extended permit tcp any4 host 10.10.51.22 eq 5023 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound remark BLACKLIST access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.247 - 08-12-2016 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound remark SOFTSMART -10-nov-2016 access-list inbound remark IIS MACINE access-list inbound remark IIS MACINE access-list inbound remark POWERED - 10.10.51.244 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.206 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.206 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.206 - 08-12-2016 access-list inbound remark POWERED - 10.10.50.221 - 08-12-2016 access-list inbound remark POWERED - 10.10.50.221 - 08-12-2016 access-list inbound remark POWERED - 10.10.50.221 - 08-12-2016 access-list inbound remark POWERED - 10.10.50.232 - 08-12-2016 access-list inbound remark POWERED - 10.10.50.232 - 08-12-2016 access-list inbound remark POWERED - 10.10.50.232 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.240 - 08-12-2016 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound remark POWERED - 10.10.51.249 - 09-07-2016 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound remark ZIMBRA MAIL SERVER - 10.10.51.60 access-list inbound extended permit tcp any4 host 10.10.50.115 eq 8080 access-list inbound extended permit tcp any4 host 10.10.50.115 eq 3434 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 465 access-list inbound extended permit tcp any4 host 67.227.17.49 eq www access-list inbound extended permit tcp any4 host 67.227.17.49 eq https access-list inbound extended permit tcp any4 host 67.227.17.49 eq smtp access-list inbound extended permit tcp any4 host 67.227.17.49 eq imap4 access-list inbound extended permit tcp any4 host 67.227.17.49 eq pop3 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 993 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 995 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 587 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 7143 access-list inbound extended permit tcp any4 host 67.227.17.49 eq 7071 access-list inbound extended permit tcp any4 host 10.10.51.60 eq smtp access-list inbound extended permit tcp any4 host 10.10.51.60 eq 465 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 587 access-list inbound extended permit tcp any4 host 10.10.51.60 eq pop3 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 8443 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 995 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 7143 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 7110 access-list inbound extended permit tcp any4 host 10.10.51.60 eq 7993 access-list inbound extended permit tcp any4 host 10.10.51.241 object-group DM_INLINE_TCP_8 access-list inbound extended permit icmp any4 host 10.10.51.241 access-list inbound extended permit udp host 137.117.44.152 host 10.10.51.22 range 1 1000 no pager logging enable logging timestamp logging buffer-size 409600 logging buffered informational logging asdm informational mtu inside 1500 mtu outside 1500 mtu interconnect 1500 mtu management 1500 no failover icmp unreachable rate-limit 1 burst-size 1 icmp permit any inside icmp permit any outside asdm image disk0:/asdm-715.bin asdm history enable arp timeout 14400 arp permit-nonconnected nat (inside,inside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-192.168.1.0 obj-192.168.1.0 nat (inside,outside) source static obj-192.168.1.0 obj-192.168.1.0 destination static obj-10.10.60.0 obj-10.10.60.0 no-proxy-arp route-lookup nat (inside,outside) source static any any destination static NETWORK_OBJ_10.10.50.192_26 NETWORK_OBJ_10.10.50.192_26 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.30.0 obj-10.10.30.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.32.0 obj-10.10.32.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-192.168.1.0 obj-192.168.1.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-172.16.20.0 obj-172.16.20.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-192.168.4.0 obj-192.168.4.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.40.0 obj-10.10.40.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.44.0 obj-10.10.44.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static Vadodara-Net Vadodara-Net no-proxy-arp route-lookup nat (inside,outside) source static any any destination static obj-10.10.50.192 obj-10.10.50.192 no-proxy-arp route-lookup nat (inside,outside) source static any any destination static obj-10.10.22.0 obj-10.10.22.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.70.0 obj-10.10.70.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.10.0 obj-10.10.10.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.22.0 obj-10.10.22.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.60.0 obj-10.10.60.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.1.0 obj-10.10.1.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.50.192 obj-10.10.50.192 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.59.1.0 obj-10.59.1.0 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.59.1.64 obj-10.59.1.64 no-proxy-arp route-lookup nat (inside,outside) source static obj-10.10.50.0 obj-10.10.50.0 destination static obj-10.10.20.0 obj-10.10.20.0 no-proxy-arp route-lookup nat (inside,outside) source static softsmart softsmart destination static privatis privatis no-proxy-arp route-lookup ! object network obj-10.10.51.40 nat (inside,outside) static 67.203.13.151 dns object network obj-10.10.50.115 nat (inside,outside) static 67.227.17.51 dns object network obj-10.10.51.20 nat (inside,outside) static 67.203.13.155 dns object network obj-10.10.51.42 nat (inside,outside) static 67.203.13.147 dns object network obj-10.10.51.41 nat (inside,outside) static 67.203.13.148 dns object network obj-10.10.51.60 nat (inside,outside) static 67.227.17.52 dns object network obj-10.10.51.69 nat (inside,outside) static 67.227.17.50 dns object network obj-10.10.51.12 nat (inside,outside) static 67.227.17.56 dns object network obj-10.10.50.40 nat (inside,outside) static 67.227.17.59 dns object network obj-10.10.50.248 nat (inside,outside) static 67.227.17.61 dns object network obj-10.10.51.48 nat (inside,outside) static 67.227.17.63 dns object network obj-10.10.51.22 nat (inside,outside) static 67.203.13.149 dns object network obj-10.10.51.206 nat (inside,outside) static 67.203.13.152 dns object network obj-10.10.50.221 nat (inside,outside) static 67.203.13.153 dns object network obj-10.10.51.232 nat (inside,outside) static 67.203.13.154 dns object network obj-10.10.50.93 nat (inside,outside) static 67.203.13.156 dns object network obj-10.10.51.240 nat (inside,outside) static 67.203.13.157 dns object network obj-10.10.51.21 nat (inside,outside) static 67.203.13.158 dns object network obj-10.10.50.60 nat (inside,outside) static 67.203.13.150 dns object network obj-10.10.51.13 nat (inside,outside) static 67.227.17.53 dns object network obj-10.10.51.55 nat (inside,outside) static 67.227.17.57 dns object network obj-10.10.51.14 nat (inside,outside) static 67.227.17.54 dns object network obj-10.10.51.90 nat (inside,outside) static 67.227.17.60 dns object network obj-10.10.51.10 nat (inside,outside) static 67.227.17.55 dns object network obj-10.10.51.241 nat (inside,outside) static 67.227.17.62 dns object network obj-10.10.51.44 nat (inside,outside) static 67.227.17.58 dns object network obj_any nat (inside,outside) dynamic interface access-group inside_access_in_1 in interface inside access-group inbound in interface outside ! prefix-list VPN seq 1 permit 192.168.1.0/24 le 32 ! ! route-map VPN_POOL permit 1 match ip address prefix-list VPN ! ! router ospf 100 router-id 172.16.30.202 network 10.10.50.0 255.255.254.0 area 0 network 172.16.30.200 255.255.255.252 area 0 log-adj-changes redistribute static subnets route-map VPN_POOL ! route outside 0.0.0.0 0.0.0.0 67.203.13.145 1 timeout xlate 3:00:00 timeout pat-xlate 0:00:30 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00 timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00 timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute timeout tcp-proxy-reassembly 0:01:00 timeout floating-conn 0:00:00 dynamic-access-policy-record DfltAccessPolicy user-identity default-domain LOCAL nac-policy DfltGrpPolicy-nac-framework-create nac-framework reval-period 36000 sq-period 300 aaa authentication ssh console LOCAL aaa authentication telnet console LOCAL aaa authentication serial console LOCAL http server enable http 192.168.1.0 255.255.255.0 management http 0.0.0.0 0.0.0.0 inside http 75.82.136.69 255.255.255.255 outside http Vadodara-Net 255.255.255.0 inside http 0.0.0.0 0.0.0.0 outside no snmp-server location no snmp-server contact snmp-server enable traps snmp authentication linkup linkdown coldstart sysopt connection preserve-vpn-flows sysopt noproxyarp inside crypto ipsec ikev1 transform-set autobots-transform-and-roll-out esp-aes esp-sha-hmac crypto ipsec ikev1 transform-set sonicwall esp-aes-256 esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac crypto ipsec ikev1 transform-set sonicwall2 esp-aes-256 esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS esp-aes esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS mode transport crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS esp-aes esp-md5-hmac crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS mode transport crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS esp-aes-192 esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS mode transport crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS esp-aes-192 esp-md5-hmac crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS mode transport crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS esp-aes-256 esp-sha-hmac crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS mode transport crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS esp-aes-256 esp-md5-hmac crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS mode transport crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS esp-3des esp-sha-hmac crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS mode transport crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS esp-3des esp-md5-hmac crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS mode transport crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS esp-des esp-sha-hmac crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS mode transport crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS esp-des esp-md5-hmac crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS mode transport crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac crypto ipsec ikev1 transform-set ESP-DES-SHA-TEST esp-3des esp-sha-hmac crypto ipsec ikev1 transform-set TRA-ESP-3DES esp-3des esp-sha-hmac crypto ipsec security-association pmtu-aging infinite crypto dynamic-map ezvpn_map 65535 set ikev1 transform-set autobots-transform-and-roll-out ESP-AES-128-SHA-TRANS ESP-AES-128-MD5-TRANS ESP-AES-192-SHA-TRANS ESP-AES-192-MD5-TRANS ESP-AES-256-SHA-TRANS ESP-AES-256-MD5-TRANS ESP-3DES-SHA-TRANS ESP-3DES-MD5-TRANS ESP-DES-SHA-TRANS ESP-DES-MD5-TRANS crypto map cybertron 1 match address outside_1_cryptomap crypto map cybertron 1 set pfs crypto map cybertron 1 set peer 76.79.157.178 crypto map cybertron 1 set ikev1 transform-set TRA-ESP-3DES crypto map cybertron 2 match address outside_cryptomap_2 crypto map cybertron 2 set pfs group1 crypto map cybertron 2 set peer 116.72.250.5 crypto map cybertron 2 set ikev1 transform-set ESP-3DES-SHA crypto map cybertron 4 match address decepticons4 crypto map cybertron 4 set pfs crypto map cybertron 4 set peer 67.207.191.18 crypto map cybertron 4 set ikev1 transform-set ESP-DES-MD5 crypto map cybertron 10 match address decepticons crypto map cybertron 10 set peer 208.70.75.2 crypto map cybertron 10 set ikev1 transform-set autobots-transform-and-roll-out crypto map cybertron 10 set nat-t-disable crypto map cybertron 20 match address decepticons2 crypto map cybertron 20 set peer 207.166.133.2 crypto map cybertron 20 set ikev1 transform-set autobots-transform-and-roll-out crypto map cybertron 29 match address decepticons3 crypto map cybertron 29 set pfs crypto map cybertron 29 set peer 66.241.104.40 crypto map cybertron 29 set ikev1 transform-set autobots-transform-and-roll-out ESP-3DES-SHA crypto map cybertron 45 match address decepticons8 crypto map cybertron 45 set pfs crypto map cybertron 45 set peer 202.122.18.27 crypto map cybertron 45 set ikev1 transform-set TRA-ESP-3DES crypto map cybertron 50 match address decepticons9 crypto map cybertron 50 set peer 67.207.168.50 crypto map cybertron 50 set ikev1 transform-set ESP-AES-256-SHA crypto map cybertron 70 match address vancouv-la crypto map cybertron 70 set pfs crypto map cybertron 70 set peer 69.90.97.132 67.203.13.146 crypto map cybertron 70 set ikev1 transform-set ESP-AES-256-SHA-TRANS ESP-AES-256-SHA crypto map cybertron 5900 match address 59quadranet crypto map cybertron 5900 set pfs crypto map cybertron 5900 set peer 184.170.243.130 crypto map cybertron 5900 set ikev1 transform-set autobots-transform-and-roll-out ESP-DES-MD5 ESP-DES-SHA ESP-3DES-MD5 ESP-3DES-SHA crypto map cybertron 5900 set security-association lifetime seconds 1800 crypto map cybertron 5964 match address 59coloat crypto map cybertron 5964 set peer 184.170.249.2 crypto map cybertron 5964 set ikev1 transform-set autobots-transform-and-roll-out crypto map cybertron 65535 ipsec-isakmp dynamic ezvpn_map crypto map cybertron interface outside crypto ca trustpool policy crypto ikev1 enable outside crypto ikev1 policy 10 authentication pre-share encryption aes hash sha group 5 lifetime 86400 crypto ikev1 policy 24 authentication pre-share encryption 3des hash sha group 2 lifetime 86400 crypto ikev1 policy 26 authentication pre-share encryption aes-256 hash sha group 2 lifetime 28800 crypto ikev1 policy 29 authentication pre-share encryption aes-256 hash sha group 2 lifetime 86400 crypto ikev1 policy 49 authentication pre-share encryption des hash md5 group 2 lifetime 86400 telnet 0.0.0.0 0.0.0.0 inside telnet timeout 5 ssh 0.0.0.0 0.0.0.0 inside ssh 71.107.0.0 255.255.0.0 outside ssh 0.0.0.0 0.0.0.0 outside ssh 0.0.0.0 0.0.0.0 management ssh timeout 5 ssh version 2 console timeout 0 management-access inside dhcpd dns 4.2.2.2 8.8.8.8 ! dhcpd address 10.10.51.2-10.10.51.33 inside dhcpd enable inside ! threat-detection basic-threat threat-detection statistics access-list no threat-detection statistics tcp-intercept group-policy DefaultRAGroup internal group-policy DefaultRAGroup attributes dns-server value 4.2.2.2 8.8.8.8 vpn-tunnel-protocol l2tp-ipsec split-tunnel-policy tunnelspecified split-tunnel-network-list value mastergroup intercept-dhcp 255.255.255.255 enable group-policy pranav internal group-policy pranav attributes dns-server value 4.2.2.2 8.8.8.8 vpn-tunnel-protocol l2tp-ipsec split-tunnel-policy tunnelspecified split-tunnel-network-list value mastergroup intercept-dhcp 255.255.255.255 enable username pranav password qE8vno/sydpSQBsk encrypted privilege 15 username joseph password ZIYbSGP7e+nF/FtR39fGgQ== nt-encrypted privilege 0 username joseph attributes vpn-group-policy DefaultRAGroup username softsmart password z9UDFazngtaERl4T encrypted privilege 15 tunnel-group DefaultRAGroup general-attributes address-pool test default-group-policy DefaultRAGroup tunnel-group DefaultRAGroup ipsec-attributes ikev1 pre-shared-key ***** tunnel-group DefaultRAGroup ppp-attributes no authentication chap authentication ms-chap-v2 tunnel-group 207.166.133.2 type ipsec-l2l tunnel-group 207.166.133.2 ipsec-attributes ikev1 pre-shared-key ***** isakmp keepalive threshold 1800 retry 2 ! class-map inspection_default match default-inspection-traffic ! ! policy-map type inspect dns preset_dns_map parameters message-length maximum client auto message-length maximum 512 policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 h225 inspect h323 ras inspect rsh inspect rtsp inspect esmtp inspect sqlnet inspect skinny inspect sunrpc inspect xdmcp inspect sip inspect netbios inspect tftp inspect icmp inspect ip-options ! service-policy global_policy global prompt hostname context no call-home reporting anonymous call-home profile CiscoTAC-1 no active destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService destination address email callhome@cisco.com destination transport-method http subscribe-to-alert-group diagnostic subscribe-to-alert-group environment subscribe-to-alert-group inventory periodic monthly subscribe-to-alert-group configuration periodic monthly subscribe-to-alert-group telemetry periodic daily Cryptochecksum:3211330ea53c993800424059f5d87049 : end Softsmart#