Building configuration... Current configuration : 5987 bytes ! version 15.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname 403.RO-2911.01 ! boot-start-marker boot-end-marker ! ! logging buffered 51200 warnings ! no aaa new-model ! ! ! ! ! ! ! ! ! ! ! ip dhcp excluded-address 192.168.0.1 ip dhcp excluded-address 192.168.20.1 ! ip dhcp pool dhcpDATA import all network 192.168.0.0 255.255.255.0 default-router 192.168.0.1 dns-server 195.186.1.162 195.186.4.162 lease 10 ! ip dhcp pool dhcpVOIP import all network 192.168.20.0 255.255.255.0 default-router 192.168.20.1 dns-server 195.186.1.162 195.186.4.162 lease 10 ! ! ! ip domain name yourdomain.com ip cef no ipv6 cef multilink bundle-name authenticated ! ! cts logging verbose ! crypto pki trustpoint TP-self-signed-590145394 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-590145394 revocation-check none rsakeypair TP-self-signed-590145394 ! ! crypto pki certificate chain TP-self-signed-590145394 certificate self-signed 01 30820229 30820192 A0030201 02020101 300D0609 2A864886 F70D0101 05050030 30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 35393031 34353339 34301E17 0D313630 38333130 38323334 325A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F 532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3539 30313435 33393430 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100 C5352779 F96AD405 B5E4789E 723C1B98 DD1642E8 A4955497 6EBDDD5B F74DDCCC 26DA25DF 08CCE6B0 1674C064 A6A05869 85BD3130 E135CA6F 9418F534 F0523236 515434A7 E28F4458 E78B9B12 85F87723 B56D152E 0C916D69 3737C3BE A6BCA693 0A292B1C 87CB07E1 ADA9399A E5299154 7F28B072 0B19CF4B CEA081E8 A112928F 02030100 01A35330 51300F06 03551D13 0101FF04 05300301 01FF301F 0603551D 23041830 16801446 26117D6A 8E834939 3039E1BE A23E5CD7 6F1BF430 1D060355 1D0E0416 04144626 117D6A8E 83493930 39E1BEA2 3E5CD76F 1BF4300D 06092A86 4886F70D 01010505 00038181 008EAE04 4D8B7F59 FDFE2993 50D4BF22 FA028D55 27FA1064 B15D65BF 1230509E 4FBCF579 8AF96105 29430BE8 C6DDD064 88053A8F C17652BB 96F5BB2B 79372B0C 66070C80 0095E0A4 29D1FDD7 5B27565A 43EE547F 581778FC 10D76FF0 1AB055C6 9563692D 2BB108BE DCD8C9E4 CC1D293D D8BA47ED 8CD81449 5B8A0038 119B09BF 69 quit license udi pid CISCO2911/K9 sn FCZ203640LC ! ! ! redundancy ! ! ! ! ! ! interface Embedded-Service-Engine0/0 no ip address shutdown ! interface GigabitEthernet0/0 description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$ no ip address ip nat inside ip virtual-reassembly in duplex auto speed auto ! interface GigabitEthernet0/0.5 encapsulation dot1Q 5 ip address 192.168.0.1 255.255.255.0 ip nat inside ip virtual-reassembly in ip policy route-map PBR ! interface GigabitEthernet0/0.20 encapsulation dot1Q 20 ip address 192.168.20.1 255.255.255.0 ip nat inside ip virtual-reassembly in ip policy route-map PBR ! interface GigabitEthernet0/0.200 encapsulation dot1Q 200 ip address 192.168.200.1 255.255.255.0 ! interface GigabitEthernet0/1 ip address 217.61.50.105 255.255.255.252 ip nat outside ip virtual-reassembly in no ip route-cache duplex auto speed auto ipv6 enable no cdp enable ! interface GigabitEthernet0/2 ip address dhcp ip nat outside ip virtual-reassembly in no ip route-cache duplex auto speed auto ipv6 enable no cdp enable ! ip forward-protocol nd ! ip http server ip http access-class 24 ip http authentication local ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000 ! ip nat inside source list 23 interface GigabitEthernet0/1 overload ip nat inside source list 24 interface GigabitEthernet0/1 overload ip nat inside source list 25 interface GigabitEthernet0/2 overload ip nat inside source static tcp 192.168.0.20 9233 193.135.255.134 9233 extendable ip nat inside source static tcp 192.168.0.20 9233 193.222.84.38 9233 extendable ip nat inside source static tcp 192.168.0.20 9233 193.222.84.44 9233 extendable ip nat inside source static tcp 192.168.0.20 389 195.128.144.200 389 extendable ip nat inside source static tcp 192.168.0.20 9233 212.243.175.174 9233 extendable ip nat inside source static tcp 192.168.0.205 443 217.11.40.106 443 extendable ip nat inside source static tcp 192.168.0.205 25 217.11.40.106 587 extendable ip nat inside source static tcp 192.168.0.49 1433 217.11.40.106 1433 extendable ip nat inside source static tcp 192.168.0.49 1434 217.11.40.106 1434 extendable ip nat inside source static tcp 192.168.0.20 389 217.146.49.200 389 extendable ! ip access-list extended DATA permit ip 192.168.0.0 0.0.0.255 any ip access-list extended VOIP permit ip 192.168.20.0 0.0.0.255 any ! ! route-map PBR permit 10 match ip address DATA set ip next-hop 217.61.50.105 ! route-map PBR permit 20 match ip address VOIP set ip next-hop 192.168.1.1 ! ! access-list 23 permit 10.10.10.0 0.0.0.127 access-list 24 permit 192.168.0.0 0.0.0.255 access-list 25 permit 192.168.20.0 0.0.0.255 ! control-plane ! ! line con 0 login local line aux 0 line 2 no activation-character no exec transport preferred none transport output pad telnet rlogin lapb-ta mop udptn v120 ssh stopbits 1 line vty 0 4 access-class 24 in privilege level 15 login local transport input telnet ssh line vty 5 15 access-class 23 in privilege level 15 login local transport input telnet ssh ! scheduler allocate 20000 1000 ! end