View Full Version : Initial Config of R24 in H3 CFG Lab
cciestm
09-24-2018, 10:03 AM
Hello,
Can someone share initial config of R24 in H3 CFG Lab as I need CryptoMap and NAT configuration for this device?
Thanks
routingrpf
09-24-2018, 03:05 PM
Hello,
Can someone share initial config of R24 in H3 CFG Lab as I need CryptoMap and NAT configuration for this device?
Thanks
That is Initial from vendor mate
R24#sh run
Building configuration...
Current configuration : 4258 bytes
!
! Last configuration change at 14:16:57 EET Tue Feb 20 2018
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R24
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
enable secret 5 $1$uCwn$/V8yxjYUPMuC0IUF9T4C9/
!
no aaa new-model
clock timezone EET 2 0
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
!
!
!
!
!
!
!
!
!
!
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
redundancy
!
!
!
!
!
!
!
crypto isakmp policy 10
encr 3des
authentication pre-share
group 2
crypto isakmp key HollyMaya address 0.0.0.0
!
!
crypto ipsec transform-set esp-aes esp-aes esp-sha-hmac
mode tunnel
!
!
!
crypto dynamic-map HollyMayaDM 10
set transform-set esp-aes
match address L2LVPN
!
!
crypto map HollyMayaMap 10 ipsec-isakmp dynamic HollyMayaDM
!
!
!
!
!
interface Loopback0
ip address 10.2.24.24 255.255.255.255
ip ospf 1 area 0
!
interface Loopback123
ip address 123.45.67.35 255.255.255.240
!
interface Tunnel0
ip address 10.200.0.1 255.255.255.0
no ip redirects
tunnel source Ethernet0/0
tunnel mode gre multipoint
!
interface Ethernet0/0
ip address 201.99.24.2 255.255.255.252
ip nat outside
ip virtual-reassembly in
crypto map HollyMayaMap
!
interface Ethernet0/1
ip address 10.2.124.1 255.255.255.252
ip nat inside
ip virtual-reassembly in
ip ospf 1 area 0
!
interface Ethernet0/2
ip address 10.2.224.1 255.255.255.252
ip nat inside
ip virtual-reassembly in
ip ospf 1 area 0
!
interface Ethernet0/3
no ip address
shutdown
!
interface Ethernet1/0
no ip address
shutdown
!
interface Ethernet1/1
no ip address
shutdown
!
interface Ethernet1/2
no ip address
shutdown
!
interface Ethernet1/3
no ip address
shutdown
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/3
no ip address
shutdown
serial restart-delay 0
!
router ospf 1
router-id 10.2.24.24
!
router bgp 65002
bgp router-id 10.2.24.24
bgp log-neighbor-changes
network 123.45.67.32 mask 255.255.255.240
redistribute static
neighbor 10.2.23.23 remote-as 65002
neighbor 10.2.23.23 update-source Loopback0
neighbor 10.2.23.23 next-hop-self
neighbor 201.99.24.1 remote-as 29999
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
ip nat pool R24 123.45.67.36 123.45.67.46 netmask 255.255.255.240
ip nat inside source route-map NAT pool R24 overload
ip route 10.7.0.0 255.255.0.0 201.99.70.2
!
ip access-list extended L2LVPN
permit ip 10.0.0.0 0.255.255.255 10.7.0.0 0.0.0.255
ip access-list extended NAT
deny ip 10.0.0.0 0.255.255.255 10.7.0.0 0.0.255.255
permit ip 10.0.0.0 0.255.255.255 any
!
!
route-map NAT permit 10
match ip address NAT
!
!
!
control-plane
!
!
!
!
!
!
!
banner exec ^CC
+-------------------------------------------------------------+
| CCIE4career.com |
| Skype ID1: ccie04final |
| Skype ID2: nguyenbich279 |
|The best solution, very clear workbook |
|The best way you can get CCIE Certificate. |
|-------------------------------------------------------------|
| Our product: |
|+ Workbook: For you to practice at home |
|+ Video: Help you understand about traffic follow |
| and technology in the real lab |
|+ Support: 24/7, answer all your doubt question in private |
|+ Live Stream: Train and answer all your questions |
+-------------------------------------------------------------+
^C
!
line con 0
logging synchronous
line aux 0
line vty 0 4
login
transport input none
!
!
end
cciestm
09-25-2018, 09:00 AM
That is Initial from vendor mate
R24#sh run
Building configuration...
Current configuration : 4258 bytes
!
! Last configuration change at 14:16:57 EET Tue Feb 20 2018
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R24
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
enable secret 5 $1$uCwn$/V8yxjYUPMuC0IUF9T4C9/
!
no aaa new-model
clock timezone EET 2 0
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
!
!
!
!
!
!
!
!
!
!
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
redundancy
!
!
!
!
!
!
!
crypto isakmp policy 10
encr 3des
authentication pre-share
group 2
crypto isakmp key HollyMaya address 0.0.0.0
!
!
crypto ipsec transform-set esp-aes esp-aes esp-sha-hmac
mode tunnel
!
!
!
crypto dynamic-map HollyMayaDM 10
set transform-set esp-aes
match address L2LVPN
!
!
crypto map HollyMayaMap 10 ipsec-isakmp dynamic HollyMayaDM
!
!
!
!
!
interface Loopback0
ip address 10.2.24.24 255.255.255.255
ip ospf 1 area 0
!
interface Loopback123
ip address 123.45.67.35 255.255.255.240
!
interface Tunnel0
ip address 10.200.0.1 255.255.255.0
no ip redirects
tunnel source Ethernet0/0
tunnel mode gre multipoint
!
interface Ethernet0/0
ip address 201.99.24.2 255.255.255.252
ip nat outside
ip virtual-reassembly in
crypto map HollyMayaMap
!
interface Ethernet0/1
ip address 10.2.124.1 255.255.255.252
ip nat inside
ip virtual-reassembly in
ip ospf 1 area 0
!
interface Ethernet0/2
ip address 10.2.224.1 255.255.255.252
ip nat inside
ip virtual-reassembly in
ip ospf 1 area 0
!
interface Ethernet0/3
no ip address
shutdown
!
interface Ethernet1/0
no ip address
shutdown
!
interface Ethernet1/1
no ip address
shutdown
!
interface Ethernet1/2
no ip address
shutdown
!
interface Ethernet1/3
no ip address
shutdown
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/3
no ip address
shutdown
serial restart-delay 0
!
router ospf 1
router-id 10.2.24.24
!
router bgp 65002
bgp router-id 10.2.24.24
bgp log-neighbor-changes
network 123.45.67.32 mask 255.255.255.240
redistribute static
neighbor 10.2.23.23 remote-as 65002
neighbor 10.2.23.23 update-source Loopback0
neighbor 10.2.23.23 next-hop-self
neighbor 201.99.24.1 remote-as 29999
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
ip nat pool R24 123.45.67.36 123.45.67.46 netmask 255.255.255.240
ip nat inside source route-map NAT pool R24 overload
ip route 10.7.0.0 255.255.0.0 201.99.70.2
!
ip access-list extended L2LVPN
permit ip 10.0.0.0 0.255.255.255 10.7.0.0 0.0.0.255
ip access-list extended NAT
deny ip 10.0.0.0 0.255.255.255 10.7.0.0 0.0.255.255
permit ip 10.0.0.0 0.255.255.255 any
!
!
route-map NAT permit 10
match ip address NAT
!
!
!
control-plane
!
!
!
!
!
!
!
banner exec ^CC
+-------------------------------------------------------------+
| CCIE4career.com |
| Skype ID1: ccie04final |
| Skype ID2: nguyenbich279 |
|The best solution, very clear workbook |
|The best way you can get CCIE Certificate. |
|-------------------------------------------------------------|
| Our product: |
|+ Workbook: For you to practice at home |
|+ Video: Help you understand about traffic follow |
| and technology in the real lab |
|+ Support: 24/7, answer all your doubt question in private |
|+ Live Stream: Train and answer all your questions |
+-------------------------------------------------------------+
^C
!
line con 0
logging synchronous
line aux 0
line vty 0 4
login
transport input none
!
!
end
Thanks a lot brother, routingrpf.
Powered by IECollection; Copyright IECollection, Inc. All rights reserved.