Current configuration : 3548 bytes ! version 12.4 no service pad service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname 871W ! boot-start-marker boot-end-marker ! logging message-counter syslog ! no aaa new-model ! ! dot11 syslog ! dot11 ssid wireless vlan 1 authentication open guest-mode ! ip source-route ! ! ip dhcp excluded-address 192.168.0.1 192.168.0.49 ip dhcp excluded-address 192.168.0.101 192.168.0.254 ! ip dhcp pool sdm-pool1 import all network 192.168.0.0 255.255.255.0 default-router 192.168.0.1 dns-server x.x.x.x x.x.x.x ! ! ip cef no ipv6 cef ! multilink bundle-name authenticated ! ! ! ! ! crypto isakmp policy 10 encr 3des hash md5 authentication pre-share crypto isakmp key xx address xx.xx.xx.xx ! ! crypto ipsec transform-set sonicwall esp-3des esp-md5-hmac ! crypto map sonicwallmap 10 ipsec-isakmp description vpn tunnel to sonicwall set peer xx.xx.xx.xx set security-association lifetime seconds 86400 set transform-set sonicwall match address 120 ! archive log config hidekeys ! ! ! bridge irb ! ! interface FastEthernet0 ! interface FastEthernet1 ! interface FastEthernet2 ! interface FastEthernet3 ! interface FastEthernet4 description $ES_WAN$$ETH-WAN$$FW_OUTSIDE$ ip address dhcp client-id FastEthernet4 ip access-group 101 in ip nat outside ip virtual-reassembly duplex auto speed auto crypto map sonicwallmap ! interface Dot11Radio0 no ip address ip nat inside no ip virtual-reassembly ! encryption vlan 1 key 1 size 40bit 7 xx transmit-key encryption vlan 1 mode wep mandatory ! ssid wireless ! speed basic-1.0 basic-2.0 basic-5.5 basic-6.0 basic-9.0 basic-11.0 basic-12.0 basic -18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 station-role root ! interface Dot11Radio0.1 encapsulation dot1Q 1 no cdp enable bridge-group 1 bridge-group 1 subscriber-loop-control bridge-group 1 spanning-disabled bridge-group 1 block-unknown-source no bridge-group 1 source-learning no bridge-group 1 unicast-flooding ! interface Dot11Radio0.2 encapsulation dot1Q 2 native no cdp enable bridge-group 1 bridge-group 1 subscriber-loop-control bridge-group 1 spanning-disabled bridge-group 1 block-unknown-source no bridge-group 1 source-learning no bridge-group 1 unicast-flooding ! interface Vlan1 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$ no ip address no ip redirects no ip unreachables no ip proxy-arp no ip route-cache cef no ip route-cache bridge-group 1 ! interface BVI1 ip address 192.168.0.1 255.255.255.0 ip access-group 100 in ip nat inside ip virtual-reassembly ! ip forward-protocol nd no ip http server no ip http secure-server ! ! ip nat inside source route-map SDM_RMAP_1 interface FastEthernet4 overload ! access-list 1 remark INSIDE_IF=Vlan1 access-list 1 remark SDM_ACL Category=2 access-list 1 permit 192.168.0.0 0.0.0.255 access-list 102 remark SDM_ACL Category=2 access-list 102 deny ip 192.168.0.0 0.0.0.255 192.168.253.0 0.0.0.255 access-list 102 permit ip 192.168.0.0 0.0.0.255 any access-list 103 remark VTY Access-class list access-list 103 remark SDM_ACL Category=1 access-list 103 permit ip 192.168.0.0 0.0.0.255 any access-list 103 deny ip any any access-list 120 permit ip 192.168.0.0 0.0.0.255 192.168.253.0 0.0.0.255 ! ! ! ! route-map SDM_RMAP_1 permit 1 match ip address 102 ! ! control-plane ! bridge 1 protocol ieee bridge 1 route ip ! line con 0 no modem enable line aux 0 line vty 0 4 login ! scheduler max-task-time 5000 end 871W#