GRE TUNNEL EAST

User Access Login

Username:jackmeoff

Password:

stimpy-gw>enable

Password:

stimpy-gw#sho run

Building configuration...

!

!

! ADTRAN, Inc. OS version 17.09.01.00

! Boot ROM version 13.03.00.SB

! Platform: NetVanta 3448, part number 1200821E1

! Serial number LBADTN1033AD633

!

!

hostname "stimpy-gw"

enable password encrypted 007

!

clock timezone -5-Eastern-Time

!

ip subnet-zero

ip classless

ip default-gateway 198.204.51.57

ip routing

!

!

ip domain-name "m21.net"

ip domain-proxy

ip name-server 192.168.1.77 192.168.2.77

!

!

no auto-config

!

event-history on

no logging forwarding

logging forwarding priority-level info

no logging email

!

service password-encryption

!

username "jackmeoff" password encrypted "041956f"

!

ip firewall

ip firewall stealth

no ip firewall alg msn

no ip firewall alg mszone

no ip firewall alg pptp

no ip firewall alg h323

no ip firewall alg sip

!

!

!

!

!

!

!

!

no dot11ap access-point-control

!

!

!

!

!

ip dhcp-server database local

ip dhcp-server excluded-address 192.168.1.200 192.168.1.210

ip dhcp-server excluded-address 192.168.1.2

ip dhcp-server excluded-address 192.168.1.3

ip dhcp-server excluded-address 192.168.1.4

ip dhcp-server excluded-address 192.168.1.35

ip dhcp-server excluded-address 192.168.1.24

ip dhcp-server excluded-address 192.168.1.77

!

ip dhcp-server pool "stimpy Computers"

network 192.168.1.0 255.255.255.0

domain-name "m21.net"

dns-server 192.168.1.77 192.168.2.77

netbios-node-type h-node

default-router 192.168.1.1

tftp-server 72.248.0.35

ntp-server 130.88.200.6

timezone-offset -5:00

option 150 ip 72.248.0.35

!

!

!

!

lldp transmit-interval 1200

lldp minimum-transmit-interval 300

!

!

vlan 1

name "Default"

!

vlan 100

name "stimpy"

!

!

!

no ethernet cfm

!

interface eth 0/1

description stimpy Public Interface

speed 10

ip address 198.204.51.58 255.255.255.252

ip access-policy Public

no shutdown

no lldp send-and-receive

!

!

interface eth 0/2

description stimpy Computers

ip address 192.168.1.1 255.255.255.0

ip access-policy Computers

no shutdown

no lldp send-and-receive

!

!

!

interface switchport 0/1

no shutdown

no lldp send-and-receive

!

interface switchport 0/2

no shutdown

no lldp send-and-receive

!

interface switchport 0/3

no shutdown

no lldp send-and-receive

!

interface switchport 0/4

no shutdown

no lldp send-and-receive

!

interface switchport 0/5

no shutdown

no lldp send-and-receive

!

interface switchport 0/6

no shutdown

no lldp send-and-receive

!

interface switchport 0/7

no shutdown

no lldp send-and-receive

!

interface switchport 0/8

no shutdown

no lldp send-and-receive

!

!

!

interface vlan 1

snmp trap link-status

ip address 10.10.10.1 255.255.255.0

no shutdown

!

interface vlan 100

description stimpy Public IP Subnet

snmp trap link-status

ip address 198.204.100.225 255.255.255.240

ip access-policy "stimpy Public"

bandwidth 2000

traffic-shape rate 2000000

no shutdown

!

!

interface tunnel 1

description Tunnel to ren

ip address 192.168.100.1 255.255.255.252

ip mtu 1440

tunnel mode gre

tunnel source vlan 100

tunnel destination 198.204.92.65

tunnel key 7590172

keepalive 90 5

bandwidth 2000

snmp trap link-status

no shutdown

!

!

!

!

!

!

!

ip access-list standard computers-ics

remark NAT List Internet

permit any

!

!

ip access-list extended admin

remark Admin Access

permit tcp any any eq www log

permit tcp any any eq telnet log

permit tcp any any eq https log

permit tcp any any eq ssh log

!

ip access-list extended allow-internal-stimpy

remark Allow Internal

permit ip 198.204.100.224 0.0.0.15 198.204.100.224 0.0.0.15

!

ip access-list extended allow-ren

remark Allow ren to stimpy

permit gre 198.204.92.64 0.0.0.15 198.204.100.224 0.0.0.15 log

permit gre 198.204.100.224 0.0.0.15 198.204.92.64 0.0.0.15 log

!

ip access-list extended stimpy-local-computers

remark Allow Internal

!

ip access-list extended stimpy-to-ren

remark Allow to ren Public

!

ip access-list extended web-acl-12

remark Block to stimpy Public

!

ip access-list extended web-acl-13

remark Allow SNMP to m21.net

permit ip host 198.204.81.11 any log

!

ip access-list extended web-acl-14

remark Allow SSH to dev

permit tcp any any eq 2112 log

!

ip access-list extended web-acl-16

remark Allow to GRE

permit ip 192.168.1.0 0.0.0.255 192.168.100.0 0.0.0.3 log

permit ip 192.168.100.0 0.0.0.3 192.168.1.0 0.0.0.255 log

permit ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255 log

permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255 log

!

ip access-list extended web-acl-20

remark Allow Remote to buddy

permit tcp any any eq 3389 log

!

!

ip policy-class Computers

allow list admin self

allow list web-acl-16

allow list stimpy-local-computers self

discard list web-acl-12

nat source list computers-ics address 198.204.51.58 overload

!

ip policy-class "stimpy Public"

allow list allow-internal-stimpy self

allow list stimpy-to-ren

!

ip policy-class "ren GRE Tunnel"

! Implicit discard

!

ip policy-class Public

allow list admin self

allow list allow-ren

allow list web-acl-13

nat destination list web-acl-20 address 192.168.1.81

nat destination list web-acl-14 address 192.168.1.35 port 22

!

!

!

ip route 0.0.0.0 0.0.0.0 198.204.51.57

ip route 192.168.2.0 255.255.255.0 tunnel 1

!

no ip tftp server

no ip tftp server overwrite

ip http server

ip http secure-server

ip http language English

ip snmp agent

no ip ftp server

ip ftp server default-filesystem flash

no ip scp server

no ip sntp server

!

!

!

!

!

snmp-server contact "Mark Hynes"

snmp-server contact phone "(212) 633-9130"

snmp-server contact email "support@m21.net"

snmp-server location "stimpy"

snmp-server enable traps

snmp-server community public RO

snmp-server community jackmeoff RW

snmp-server host 198.204.81.11 traps version 2c jackmeoff

!

!

!

!

no ip sip udp

no ip sip tcp

!

!

!

!

!

!

!

!

!

!

!

!

!

!

line con 0

login

!

line telnet 0 4

login local-userlist

password encrypted 353fb79df781d13cf7389ea61426810c37c1

line-timeout 300

no shutdown

line ssh 0 4

login local-userlist

line-timeout 0

no shutdown

!

sntp server 130.88.200.6

!

!

!

!

!

!

end

stimpy-gw#

stimpy-gw#sho ver

ADTRAN, Inc. OS version 17.09.01.00

Mainline Version: M04

Checksum: 9C4F057D

Built on: Fri Sep 24 13:20:54 2010

Upgrade key: 1e7edd9f2b1198ba976966f3b618d0be

Boot ROM version 13.03.00.SB

Checksum: 70C3

Built on: Fri Nov 10 08:04:44 2006

Copyright (c) 1999-2010, ADTRAN, Inc.

Platform: NetVanta 3448, part number 1200821E1, CLEI code is DDC3RNDCAA

Serial number LBADTN1032AD611

Flash: 33554432 bytes DRAM: 134217727 bytes

stimpy-gw uptime is 4 weeks, 4 days, 6 hours, 59 minutes, 27 seconds

System returned to ROM by Soft Reset

Current system image file is "NONVOL:/9200821-2A170901.biz"

Primary boot system image file is "NONVOL:/9200821-2A170901.biz"

Backup boot system image file is "NONVOL:/9200821-2A170802.biz"

Primary system configuration file is "startup-config"

stimpy-gw#