!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Cisco-1700
!
boot-start-marker
boot-end-marker
!
enable secret 5 xxxxx
!
no aaa new-model
!
resource policy
!
ip cef
!
!
!
!
!
!
!
!
partition flash 2 16 16
!
!
! 
!
crypto isakmp policy 1
 encr aes
 authentication pre-share
 group 2
crypto isakmp key xxxxx address 0.0.0.0 0.0.0.0
!
crypto isakmp client configuration group curell.local
 key xxxxx
 dns 192.168.1.2
 pool vpn-pool
 acl vpn-split-tunnel
 netmask 255.255.255.0
crypto isakmp profile curell.local-profile
   match identity group curell.local
   client configuration address respond
   virtual-template 1
!
!
crypto ipsec transform-set curell.local-transform-set ah-sha-hmac esp-aes 
 mode transport
crypto ipsec transform-set curell.local-encryption esp-aes 256 esp-sha-hmac comp-lzs 
!
crypto ipsec profile curell.local-ipsec-profile
 set transform-set curell.local-encryption 
 set isakmp-profile curell.local-profile
!
!
!
!
interface FastEthernet0
 ip address 192.168.1.20 255.255.255.0
 speed auto
!
interface Serial0
 no ip address
 shutdown
!
interface Virtual-Template1 type tunnel
 ip unnumbered FastEthernet0
 tunnel mode ipsec ipv4
 tunnel protection ipsec profile curell.local-ipsec-profile
!
ip local pool vpn-pool 192.168.1.200 192.168.1.254
!
no ip http server
no ip http secure-server
!
ip access-list extended vpn-split-tunnel
 permit ip 192.168.1.0 0.0.0.255 any
!
!
control-plane
!
!
line con 0
line aux 0
line vty 0 4
!
end