!RANCID-CONTENT-TYPE: cisco-clean ! ! ! ! ! version 12.4 service timestamps debug datetime msec localtime show-timezone year service timestamps log datetime msec localtime show-timezone year service password-encryption service sequence-numbers ! hostname OrangePsychiatric_50MB_95.L1XX.802992.CHTR_41670IvySt ! boot-start-marker boot-end-marker ! logging message-counter syslog logging buffered 20000 no logging console ! aaa new-model ! aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C aaa authentication login default group tacacs+ local aaa authentication enable default group tacacs+ none ! aaa session-id common ! dot11 syslog ip source-route ! ip cef ! ip dhcp pool Ivy_DHCP network 192.168.3.0 255.255.255.0 default-router 192.168.3.1 255.255.255.0 dns-server 216.116.96.2 216.116.96.3 8.8.8.8 8.8.4.4 ! ip domain name tierzero.net ip name-server 216.116.96.2 ip name-server 216.116.96.3 no ipv6 cef ! multilink bundle-name authenticated ! voice-card 0 no dspfarm ! crypto pki token default removal timeout 0 ! username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ. archive log config hidekeys ! ip ssh version 2 ! class-map match-any VOIP match access-group 110 class-map match-all BANDWIDTH match any ! policy-map VOIP-POLICE class VOIP priority percent 33 class class-default fair-queue random-detect dscp-based random-detect ecn policy-map BANDWIDTH_50MB class BANDWIDTH shape peak 50000000 service-policy VOIP-POLICE class class-default fair-queue random-detect dscp-based random-detect ecn policy-map BANDWIDTH_50MB2 class BANDWIDTH shape average 50000000 service-policy VOIP-POLICE class class-default fair-queue random-detect dscp-based random-detect ecn ! interface GigabitEthernet0/0 description OrangePsychiatric=95.L1XX.802992..CHTR ip address 216.31.136.218 255.255.255.252 ip flow ingress ip nat outside ip virtual-reassembly load-interval 30 duplex full speed 1000 service-policy output BANDWIDTH_50MB ! interface GigabitEthernet0/1 description HPBX ip address 10.10.10.1 255.255.255.0 ip flow ingress ip nat inside ip virtual-reassembly duplex auto speed auto service-policy output BANDWIDTH_50MB2 ! interface FastEthernet1/0 description CustomerLAN ip address 192.168.3.1 255.255.255.0 secondary ip address 64.239.130.57 255.255.255.248 ip access-group 198 in ip flow ingress ip nat inside ip virtual-reassembly duplex auto speed auto service-policy output BANDWIDTH_50MB2 ! ip forward-protocol nd ip route 0.0.0.0 0.0.0.0 216.31.136.217 no ip http server no ip http secure-server ! ip flow-export source GigabitEthernet0/0 ip flow-export version 5 ip flow-export destination 216.116.96.72 2055 ! ip nat translation timeout 300 ip nat translation tcp-timeout 300 ip nat translation udp-timeout 90 no ip nat service sip udp port 5060 ip nat inside source list 1 interface GigabitEthernet0/0 overload ! access-list 1 permit 10.10.10.0 0.0.0.255 access-list 1 permit 192.168.3.0 0.0.0.255 access-list 25 permit 64.239.128.0 0.0.63.255 access-list 25 permit 66.6.208.0 0.0.15.255 access-list 25 permit 72.18.0.0 0.0.31.255 access-list 25 permit 208.179.0.0 0.0.255.255 access-list 25 permit 216.31.128.0 0.0.63.255 access-list 25 permit 216.116.96.0 0.0.31.255 access-list 25 deny any access-list 110 permit ip any host 64.239.185.8 access-list 110 permit ip any host 64.239.185.9 access-list 110 permit ip any host 64.239.185.5 access-list 110 permit ip any host 64.239.188.8 access-list 110 permit ip any host 64.239.188.9 access-list 198 permit tcp any host 64.239.130.59 eq 443 access-list 198 permit tcp any host 64.239.130.58 eq 443 access-list 198 permit tcp host 64.239.130.58 any eq 443 access-list 198 permit tcp host 64.239.130.59 any eq 443 access-list 198 deny ip any host 64.239.130.58 access-list 198 deny ip any host 64.239.130.59 access-list 198 permit ip any any snmp-server engineID local 0000000902000050547D0984 snmp-server community tierzero RO ! tacacs-server host 216.116.96.47 tacacs-server timeout 10 tacacs-server directed-request tacacs-server key 7 01040E554F58165F2F5501 ! control-plane ! banner motd ^CCCCCCCCCCCCC ************************************************************* Tierzero: Unauthorized access to this device or the attached networks is prohibited without express written permission. Violators may be prosecuted to the fullest extent of the law. Phone: 213-784-1400 option 1 Email: [tac@tierzero.net] *********TACACS+************************* ^C ! line con 0 line aux 0 line vty 0 4 access-class 25 in transport input all line vty 5 15 access-class 25 in transport input all ! scheduler allocate 20000 1000 ntp server 204.152.184.72 ntp server 216.31.128.192 ntp server 216.116.96.3 end