Subido por Fernando Rivera

CONFIGURACION MODEM (1)

Anuncio
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname <HOSNAME-SITIO>
username reduno privilege 15 password reduno
!
!
!
no aaa new-model
memory-size iomem 10
!
!
power inline negotiation injector override
!
!
ip dhcp excluded-address <ULTIMA IP DE HOST DISPONIBLE DE DATOS>
ip dhcp excluded-address <ULTIMA IP DE HOST DISPONIBLE DE VOZ>
!
ip dhcp pool <HOSNAME-SITIO>_DATA
network <RED DE DATOS> 255.255.255.248
default-router <ULTIMA IP DE HOST DISPONIBLE DE DATOS>
netbios-node-type p-node
option 150 ip 10.247.122.3 10.247.122.4 10.247.122.9 10.247.122.11
dns-server 10.247.210.36 200.33.146.233 200.33.146.169
lease 0 4
!
ip dhcp pool <HOSNAME-SITIO>_VOZ
network <RED DE VOZ> 255.255.255.248
default-router <ULTIMA IP DE HOST DISPONIBLE DE VOZ>
netbios-node-type p-node
option 150 ip 10.247.122.3 10.247.122.4 10.247.122.9 10.247.122.11
dns-server 10.247.210.36 200.33.146.233 200.33.146.169
lease 0 4
!
!
!
no ip domain lookup
ip domain name spf.segob.com
ip name-server 200.33.146.233
ip name-server 200.33.146.169
ip name-server 10.247.210.36
ip name-server 10.237.31.35
ip cef
no ipv6 cef
!
!
ip domain name spf.segob.com
cry key generate rsa ----- ahi te pide le des la longitud de la key, le das 1024
ip ssh time-out 30
ip ssh version 2
!
multilink bundle-name authenticated
vpdn enable
!
!
cts logging verbose
!
controller VDSL 0
!
!
ip access-list extended <HOSNAME-SITIO>_ACL
permit ip <RED DE DATOS> 0.0.0.7 any
permit ip < RED DE VOZ > 0.0.0.7 any
!
crypto keyring KEYR1
pre-shared-key address 189.254.19.52 key abc123
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
lifetime 84600
crypto isakmp profile <HOSNAME-SITIO>_PROF
keyring KEYR1
self-identity user-fqdn [email protected]
match identity address 189.254.19.52 255.255.255.255
initiate mode aggressive
!
!
crypto ipsec transform-set CRYPTO esp-3des esp-md5-hmac
mode tunnel
!
!!
crypto map ENCRYP client configuration address initiate
crypto map ENCRYP 10 ipsec-isakmp
set peer 189.254.19.52
set transform-set CRYPTO
set isakmp-profile <HOSNAME-SITIO>_PROF
match address <HOSNAME-SITIO>_ACL
!
!
bba-group pppoe global
mac-address autoselect
!
!
interface Loopback0
no ip address
!
interface ATM0
no ip address
shutdown
no atm ilmi-keepalive
!
!
interface Ethernet0
no ip address
shutdown
!
interface FastEthernet0
description LAN Salida Voz y Datos
switchport access vlan 3
switchport voice vlan 5
no ip address
spanning-tree portfast
!
interface FastEthernet1
switchport access vlan 3
switchport voice vlan 5
no ip address
spanning-tree portfast
!
interface FastEthernet2
switchport access vlan 3
switchport voice vlan 5
no ip address
!
interface FastEthernet3
description CNOC CONEXION INFINITUM-REF:<XXXXXXXXXX>
switchport access vlan 46
bandwidth 10000
no ip address
spanning-tree portfast
!
interface Vlan1
no ip address
shutdown
!
interface Vlan3
description DATA
ip address <ULTIMA IP DE HOST DISPONIBLE DE DATOS> 255.255.255.248
ip nat inside
ip virtual-reassembly in
!
interface Vlan5
description VOZ
ip address <ULTIMA IP DE HOST DISPONIBLE DE VOZ> 255.255.255.248
ip nat inside
ip virtual-reassembly in
!
interface Vlan46
description Salida_a_internet
ip address <IP QUE TE DIO EL MODEM CON MASCARA EN TU PC>
ip virtual-reassembly in
crypto map ENCRYP
!
interface Dialer0
no ip address
shutdown
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
ip route 0.0.0.0 0.0.0.0 <IP PUERTA DE ENLACE>
ip ssh time-out 30
ip ssh version 2
!
ip sla 10
icmp-echo 10.237.7.37 source-interface Vlan5
frequency 45
ip sla schedule 10 life forever start-time now
dialer watch-list 1 ip 189.254.19.52 255.255.255.240
dialer-list 1 protocol ip permit
!
route-map clear-df permit 10
match ip address 101
set ip df 0
!
!
control-plane
!
!
mgcp behavior rsip-range tgcp-only
mgcp behavior comedia-role none
mgcp behavior comedia-check-media-src disable
mgcp behavior comedia-sdp-force disable
!
mgcp profile default
!
!
privilege exec level 11 ping
privilege exec level 11 show configuration
privilege exec level 11 show
!
line con 0
login local
no modem enable
line aux 0
login local
transport input ssh
line vty 0 4
login local
transport input ssh
!
scheduler max-task-time 5000
scheduler allocate 20000 1000
!
Descargar