!RANCID-CONTENT-TYPE: cisco-clean ! ! ! ! ! version 15.1 service timestamps debug datetime msec service timestamps log datetime localtime service password-encryption ! hostname AllanCompany_10MB_13KQGN617717PT_8701SanFernandoRd ! boot-start-marker boot system flash c2800nm-advipservicesk9-mz.151-4.M10.bin boot system flash disk2:c7200-is-mz.123-26.bin boot-end-marker ! logging buffered 20000 no logging console ! aaa new-model ! aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C aaa authentication login default group tacacs+ local aaa authentication enable default group tacacs+ none ! aaa session-id common ! clock timezone PST -8 0 clock summer-time PST recurring ! dot11 syslog ip source-route ! ip cef ip dhcp excluded-address 10.118.5.26 10.118.255.255 ip dhcp excluded-address 10.118.0.1 10.118.5.1 ! ip dhcp pool default network 10.118.0.0 255.255.0.0 default-router 10.118.1.1 dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 lease 0 12 ! ip domain name auto ip name-server 216.116.96.2 ip name-server 216.116.96.3 ip name-server 64.239.184.125 no ipv6 cef ! multilink bundle-name authenticated ! voice-card 0 ! crypto pki token default removal timeout 0 ! license udi pid CISCO2811 sn FCZ102870VF username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ. ! redundancy ! track 1 ip sla 1 reachability delay down 180 ! class-map match-all BANDWIDTH match any ! policy-map BANDWIDTH_10MB class BANDWIDTH shape average 10000000 queue-limit 62500 bytes class class-default fair-queue random-detect dscp-based random-detect ecn ! interface Tunnel26 description 8701SanFernandoRd_To_14620_Joanbridge_Baldwin_Park bandwidth 10000 ip address 172.16.10.110 255.255.255.252 keepalive 10 3 tunnel source FastEthernet0/0.1 tunnel destination 208.179.32.94 ! interface Tunnel32 description 8701SanFernandoRd_Sierra_Failover_To_JB_FrontierOffnet bandwidth 10000 ip address 172.16.10.138 255.255.255.252 keepalive 25 50 tunnel source FastEthernet1/0 tunnel destination 47.181.223.134 ! interface Tunnel131 description ALLANCompany NBS Firewall Unit bandwidth 10000 ip address 10.255.255.33 255.255.255.254 keepalive 10 5 tunnel source FastEthernet0/0.1 tunnel destination 208.179.23.10 ! interface FastEthernet0/0 description AllanCompany=13KQGN617717PT no ip address ip flow ingress ip nat outside ip virtual-reassembly in load-interval 30 duplex full speed 100 service-policy output BANDWIDTH_10MB ! interface FastEthernet0/0.1 encapsulation dot1Q 2561 ip address 216.31.138.246 255.255.255.252 ip nat outside ip virtual-reassembly in ! interface FastEthernet0/1 description CustomerLAN ip address 216.31.179.233 255.255.255.248 secondary ip address 10.118.1.1 255.255.0.0 ip flow ingress ip nat inside ip virtual-reassembly in duplex auto speed auto service-policy output BANDWIDTH_10MB ! interface FastEthernet1/0 description Sierra_Failover ip address 166.253.33.61 255.255.255.0 ip nat outside ip virtual-reassembly in duplex full speed 100 service-policy output BANDWIDTH_10MB ! ip forward-protocol nd no ip http server no ip http secure-server ! ip flow-export source FastEthernet0/0.1 ip flow-export version 5 ip flow-export destination 216.116.96.71 2055 ! ip nat inside source route-map FIBER interface FastEthernet0/0.1 overload ip nat inside source route-map Sierra_Circuit interface FastEthernet1/0 overload ip nat inside source static 10.118.2.1 216.31.179.234 ip nat inside source static 10.118.9.51 216.31.179.235 ip nat inside source static 10.118.9.52 216.31.179.236 ip nat inside source static 10.118.9.60 216.31.179.237 ip nat inside source static 10.118.9.61 216.31.179.238 ip route 0.0.0.0 0.0.0.0 216.31.138.245 track 1 ip route 0.0.0.0 0.0.0.0 166.253.33.1 250 name Sierra_Failover ip route 10.100.0.0 255.255.0.0 Tunnel26 ip route 10.100.0.0 255.255.0.0 Tunnel32 250 name JB_FrontierOffnet ip route 208.179.23.10 255.255.255.255 216.31.138.245 ! ip access-list extended NAT permit ip 10.118.0.0 0.0.255.255 any deny ip any any ! ip sla 1 icmp-echo 216.31.138.245 source-ip 216.31.138.246 timeout 30000 threshold 30000 ip sla schedule 1 life forever start-time now ip sla 2 icmp-echo 216.31.138.245 frequency 30 timeout 30000 threshold 30000 ip sla schedule 2 life forever start-time now ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly ip sla logging traps access-list 25 permit 64.239.128.0 0.0.63.255 access-list 25 permit 66.6.208.0 0.0.15.255 access-list 25 permit 72.18.0.0 0.0.31.255 access-list 25 permit 208.179.0.0 0.0.255.255 access-list 25 permit 216.31.128.0 0.0.63.255 access-list 25 permit 216.116.96.0 0.0.31.255 access-list 25 deny any ! route-map FIBER permit 10 match ip address NAT match interface FastEthernet0/0.1 ! route-map Sierra_Circuit permit 10 match ip address NAT match interface FastEthernet1/0 ! snmp-server engineID local 0000000902000050547D0984 snmp-server community tierzero RO snmp-server enable traps ipsla snmp-server host 216.116.96.71 version 2c tierzero ! tacacs-server host 216.116.96.47 tacacs-server timeout 10 tacacs-server directed-request tacacs-server key 7 01040E554F58165F2F5501 ! control-plane ! mgcp profile default ! banner motd ^CCCCCCCCCCCCC ************************************************************* Tierzero: Unauthorized access to this device or the attached networks is prohibited without express written permission. Violators may be prosecuted to the fullest extent of the law. Phone: 213-784-1400 option 1 Email: [tac@tierzero.net] *********TACACS+************************* ^C ! line con 0 line aux 0 line vty 0 4 access-class 25 in transport input all line vty 5 15 access-class 25 in transport input all ! scheduler allocate 20000 1000 ntp server 204.152.184.72 ntp server 216.31.128.192 ntp server 216.116.96.3 end