!RANCID-CONTENT-TYPE: cisco-clean ! ! ! ! ! version 12.3 service timestamps debug datetime msec service timestamps log datetime localtime service password-encryption ! hostname ABIUSA_10MB_5002_2300.S.Hill.St ! boot-start-marker boot-end-marker ! logging buffered 20000 debugging no logging console ! clock timezone PST -8 clock summer-time PST recurring no network-clock-participate slot 1 no network-clock-participate wic 0 aaa new-model ! aaa authentication fail-message ^CCCCCCC****TACACS+************^C aaa authentication login default group tacacs+ local aaa authentication enable default group tacacs+ none aaa session-id common ip subnet-zero ip cef ! ip domain name auto ip name-server 216.116.96.2 ip name-server 216.116.96.3 ip name-server 64.239.184.125 ! ip dhcp pool HPBX network 10.10.10.0 255.255.255.0 domain-name voip.tierzero.net default-router 10.10.10.1 dns-server 216.116.96.2 216.116.96.3 option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg" ! username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ. ! class-map match-any VOIP match access-group 10 class-map match-all BANDWIDTH match any ! policy-map VOIP-POLICE class VOIP priority percent 33 class class-default fair-queue random-detect dscp-based random-detect ecn policy-map BANDWIDTH_10MB class BANDWIDTH shape peak 10000000 service-policy VOIP-POLICE class class-default fair-queue random-detect dscp-based random-detect ecn policy-map BANDWIDTH_10MB2 class BANDWIDTH shape average 10000000 service-policy VOIP-POLICE class class-default fair-queue random-detect dscp-based random-detect ecn ! interface FastEthernet0/0 description ABIUSA=13.HTXX.000208 ip address 216.31.157.234 255.255.255.252 ip access-group blockIPs in ip access-group blockIPs out ip nat outside ip flow ingress ip route-cache flow load-interval 30 duplex auto speed auto service-policy output BANDWIDTH_10MB ! interface FastEthernet0/1 description HPBX no ip address ip flow ingress ip route-cache flow load-interval 30 duplex auto speed auto service-policy output BANDWIDTH_10MB2 ! interface FastEthernet0/1.1 description HPBX encapsulation dot1Q 1159 ip address 10.10.10.1 255.255.255.0 ip nat inside ! interface FastEthernet1/0 description CustomerLAN ip address 64.239.134.233 255.255.255.248 ip access-group blockIPs in ip access-group blockIPs out load-interval 30 duplex auto speed auto service-policy output BANDWIDTH_10MB2 ! ip nat translation timeout 300 ip nat translation tcp-timeout 300 ip nat translation udp-timeout 90 no ip nat service sip tcp port 5060 no ip nat service sip udp port 5060 ip nat inside source list 1 interface FastEthernet0/0 overload no ip http server ip classless ip route 0.0.0.0 0.0.0.0 216.31.157.233 ! ip access-list extended blockIPs deny ip host 13.107.4.50 any deny ip host 40.77.228.30 any permit ip any any access-list 1 permit 10.10.10.0 0.0.0.255 access-list 25 permit 64.239.128.0 0.0.63.255 access-list 25 permit 72.18.0.0 0.0.31.255 access-list 25 permit 208.179.0.0 0.0.255.255 access-list 25 permit 216.31.128.0 0.0.63.255 access-list 25 permit 216.116.96.0 0.0.31.255 access-list 25 deny any access-list 110 permit ip any host 64.239.185.8 access-list 110 permit ip any host 64.239.185.9 access-list 110 permit ip any host 64.239.185.5 access-list 110 permit ip any host 64.239.188.8 access-list 110 permit ip any host 64.239.188.9 ! tacacs-server host 216.116.96.47 tacacs-server timeout 10 tacacs-server directed-request tacacs-server key 7 01040E554F58165F2F5501 snmp-server engineID local 0000000902000050547D0984 snmp-server community tierzero RO ! banner motd ^CCCCCCCC ************************************************************* Tierzero: Unauthorized access to this device or the attached networks is prohibited without express written permission. Violators may be prosecuted to the fullest extent of the law. Phone: 213-784-1400 option 1 Email: [tac@tierzero.net] *********TACACS+************************* ^C ! line con 0 line aux 0 line vty 0 4 access-class 25 in line vty 5 15 access-class 25 in ! ntp server 204.152.184.72 ntp server 216.31.128.192 ntp server 216.116.96.3 ! end