=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2009.11.07 12:02:50 =~=~=~=~=~=~=~=~=~=~=~= sh run Building configuration... Current configuration : 5463 bytes ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname IIITDM_RTR ! boot-start-marker boot-end-marker ! logging buffered 51200 warnings enable secret 5 $1$dUqM$QbxEuohtC0bevfZJeKY11/ ! aaa new-model ! ! aaa authentication login default local aaa authentication login test local aaa authentication login anyconnectvpn_xauth_ml_1 local aaa authorization exec default local ! ! aaa session-id common clock timezone IST 5 30 ! ! ! ip cef ! ! ip domain name iiitdm.in ip name-server 218.248.240.23 ip name-server 218.248.240.134 ip name-server 4.2.2.2 ! no ipv6 cef multilink bundle-name authenticated ! ! voice-card 0 no dspfarm ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! crypto pki trustpoint TP-self-signed-3393266535 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-3393266535 revocation-check none rsakeypair TP-self-signed-3393266535 ! ! crypto pki certificate chain TP-self-signed-3393266535 certificate self-signed 01 3082024C 308201B5 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 33333933 32363635 3335301E 170D3039 30393135 30343430 34355A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 33393332 36363533 3530819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100D9C1 97187F05 29F907A8 A9FF783C 93D091EB D697DF90 802B6314 C82A37C8 7BCDA08A E4761B60 14D17451 E5283884 86683A33 E0134E68 629C885D 97BA3D23 C585137D EAE9AD9A 3427F4B5 9B34BD01 1FC863CF 361F7C56 BC062BEC 5A30313A 39A20688 5A8D5C65 E6C94E8B 58B0870A 8EA0818C 7A8F2AB3 F5ED9514 A4B878AC 22EB0203 010001A3 74307230 0F060355 1D130101 FF040530 030101FF 301F0603 551D1104 18301682 14494949 54444D5F 5254522E 69696974 646D2E69 6E301F06 03551D23 04183016 80146947 CAC039A5 9B63E8AC 1F1B7805 B7ADC997 A4F1301D 0603551D 0E041604 146947CA C039A59B 63E8AC1F 1B7805B7 ADC997A4 F1300D06 092A8648 86F70D01 01040500 03818100 A7DAE65F E1DF04F5 0113BA80 E8D9B7A9 83F430C3 3F312B6D D25E93AE 11457D85 B668CD5A 412EB835 C9A76CFA 61F50C23 56D24F0E 28E08FB5 7EAB8D5A DD9BBB3F 474F2C08 D81AD69D 6C883441 B07EAAE9 638E1CF6 F0F8A585 A03344A3 290706CD 326F9A4A EBA4F05F 3060A86A A3249608 A0016054 A2868D49 1781A970 1F758EA6 quit ! ! ! ! username xxxx privilege 15 password 0 xxxxx archive log config hidekeys ! ! ! ! ! ! interface Loopback0 ip address 192.168.1.1 255.255.255.255 ip nat inside ip virtual-reassembly ! interface Loopback2 ip address 192.168.2.1 255.255.255.0 ! interface GigabitEthernet0/0 ip address 210.212.148.36 255.255.255.248 ip access-group 101 out ip nat outside ip virtual-reassembly duplex auto speed auto media-type rj45 ! interface GigabitEthernet0/1 description *** Connected to L3-Core SW *** ip address 172.27.16.254 255.255.255.0 ip nat inside ip virtual-reassembly duplex auto speed auto media-type rj45 ! interface GigabitEthernet0/0/0 no ip address shutdown negotiation auto ! ip local pool Intranet_SSLVPN 192.168.2.10 192.168.2.20 ip forward-protocol nd ip route 0.0.0.0 0.0.0.0 210.212.148.34 ip route 172.27.17.0 255.255.255.0 172.27.16.23 ip route 172.27.18.0 255.255.255.0 172.27.16.23 ip route 172.27.19.0 255.255.255.0 172.27.16.23 ip route 172.27.20.0 255.255.255.0 172.27.16.23 ip route 172.27.21.0 255.255.255.0 172.27.16.23 ip route 172.27.22.0 255.255.255.0 172.27.16.23 ip route 172.27.23.0 255.255.255.0 172.27.16.23 ip route 172.27.24.0 255.255.255.0 172.27.16.23 ip route 172.27.25.0 255.255.255.0 172.27.16.23 ip route 172.27.26.0 255.255.255.0 172.27.16.23 ip route 172.27.27.0 255.255.255.0 172.27.16.23 ip route 172.27.28.0 255.255.255.0 172.27.16.23 ! ! ip http server ip http authentication local ip http secure-server ip http timeout-policy idle 600 life 86400 requests 10000 ip nat inside source list 1 interface GigabitEthernet0/0 overload ip nat inside source static 172.27.20.249 210.212.148.33 ip nat inside source static 172.27.16.11 210.212.148.35 ip nat inside source static 172.27.16.3 210.212.148.37 ip nat inside source static 192.168.1.1 210.212.148.38 ! access-list 101 deny tcp any host 69.63.181.16 eq www access-list 101 deny tcp any host 69.63.181.12 eq www access-list 101 deny tcp any host 74.125.113.87 eq www access-list 101 deny tcp any host 74.125.113.94 eq www access-list 101 permit ip any any ! ! ! ! ! ! control-plane ! ! ! ! ! ! ! ! ! ! line con 0 password cisco line aux 0 line vty 0 4 password cisco transport input telnet rlogin ssh line vty 5 15 password cisco transport input telnet rlogin ssh ! scheduler allocate 20000 1000 ! webvpn gateway gateway_1 ip address 210.212.148.36 port 443 ssl trustpoint TP-self-signed-3393266535 inservice ! webvpn cef ! webvpn install svc flash:/webvpn/svc.pkg ! webvpn context sales secondary-color white title-color #CCCC66 text-color black ssl authenticate verify all ! ! policy group policy_1 functions svc-enabled svc address-pool "Intranet_SSLVPN" svc default-domain "sales" svc keep-client-installed default-group-policy policy_1 aaa authentication list anyconnectvpn_xauth_ml_1 gateway gateway_1 domain sales max-users 10 inservice ! end