!RANCID-CONTENT-TYPE: cisco-clean ! ! ! ! ! upgrade fpd auto version 15.0 no service pad service timestamps debug datetime msec service timestamps log datetime localtime service password-encryption ! hostname RNCCapital_500MB_CA.KXFN.088385.LVLC_11601WilshireBlvd ! boot-start-marker boot system disk2:/c7200-spservicesk9-mz.150-1.M10.bin boot system flash disk2:c7200-spservicesk9-mz.150-1.M10.bin boot system flash disk2:c7200-is-mz.123-26.bin boot bootldr disk2:c7200-boot-mz.124-25b.bin boot-end-marker ! logging buffered 20000 no logging console ! aaa new-model ! aaa authentication fail-message ^CCCCCCCCCCCCCCC****TACACS+************^C aaa authentication login default group tacacs+ local aaa authentication enable default group tacacs+ none ! aaa session-id common clock timezone PST -8 clock summer-time PST recurring ip source-route ip cef ! ip domain name auto ip name-server 216.116.96.2 ip name-server 216.116.96.3 no ipv6 cef multilink bundle-name authenticated ! username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ. ! class-map match-any VOIP match access-group 110 class-map match-all BANDWIDTH match any ! policy-map BANDWIDTH_500MB class BANDWIDTH shape average 500000000 queue-limit 62500 bytes class class-default fair-queue random-detect dscp-based random-detect ecn policy-map VOIP-POLICE class VOIP priority percent 35 class class-default fair-queue random-detect dscp-based random-detect ecn ! interface Tunnel1 bandwidth 100000 ip address 172.16.10.1 255.255.255.252 ip flow ingress keepalive 10 3 tunnel source GigabitEthernet0/1 tunnel destination 208.179.32.170 ! interface GigabitEthernet0/1 description RNCCapital=CA.KXFN.088385.LVLC ip address 216.31.136.246 255.255.255.252 ip access-group 198 in ip flow ingress ip nat outside ip virtual-reassembly load-interval 30 duplex full speed 1000 media-type gbic no negotiation auto no cdp enable service-policy output BANDWIDTH_500MB ! interface GigabitEthernet0/2 description CustomerLAN ip address 64.239.136.41 255.255.255.248 secondary ip address 208.179.165.65 255.255.255.224 ip flow ingress ip virtual-reassembly load-interval 30 duplex full speed auto media-type rj45 no negotiation auto service-policy output BANDWIDTH_500MB ! interface GigabitEthernet0/3 description HPBX ip address 10.116.254.1 255.255.0.0 secondary ip address 64.239.131.49 255.255.255.248 secondary ip address 10.117.10.1 255.255.0.0 ip flow ingress ip nat inside ip virtual-reassembly duplex auto speed auto media-type rj45 no negotiation auto service-policy output BANDWIDTH_500MB ! ip forward-protocol nd no ip http server no ip http secure-server ! ip nat translation timeout 300 ip nat translation tcp-timeout 300 ip nat translation udp-timeout 90 no ip nat service sip udp port 5060 ip nat inside source list 1 interface GigabitEthernet0/1 overload ip route 0.0.0.0 0.0.0.0 216.31.136.245 ip route 10.216.0.0 255.255.0.0 172.16.10.2 ! access-list 1 permit 10.117.0.0 0.0.255.255 access-list 25 permit 64.239.128.0 0.0.63.255 access-list 25 permit 66.6.208.0 0.0.15.255 access-list 25 permit 72.18.0.0 0.0.31.255 access-list 25 permit 208.179.0.0 0.0.255.255 access-list 25 permit 216.31.128.0 0.0.63.255 access-list 25 permit 216.116.96.0 0.0.31.255 access-list 25 deny any access-list 110 permit ip any host 64.239.185.8 access-list 110 permit ip any host 64.239.185.9 access-list 110 permit ip any host 64.239.185.5 access-list 110 permit ip any host 64.239.188.8 access-list 110 permit ip any host 64.239.188.9 access-list 198 deny ip 208.75.123.0 0.0.0.255 any access-list 198 permit ip any any ! snmp-server engineID local 0000000902000050547D0984 snmp-server community tierzero RO ! tacacs-server host 216.116.96.47 tacacs-server timeout 10 tacacs-server directed-request tacacs-server key 7 01040E554F58165F2F5501 ! control-plane ! gatekeeper shutdown ! banner motd ^CCCCCCCCCCCCCCCC ************************************************************* Tierzero: Unauthorized access to this device or the attached networks is prohibited without express written permission. Violators may be prosecuted to the fullest extent of the law. Phone: 213-784-1400 option 1 Email: [tac@tierzero.net] *********TACACS+************************* ^C ! line con 0 stopbits 1 line aux 0 stopbits 1 line vty 0 4 access-class 25 in line vty 5 15 access-class 25 in ! ntp server 204.152.184.72 ntp server 216.31.128.192 ntp server 216.116.96.3 end