service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname <HOSNAME-SITIO> username reduno privilege 15 password reduno ! ! ! no aaa new-model memory-size iomem 10 ! ! power inline negotiation injector override ! ! ip dhcp excluded-address <ULTIMA IP DE HOST DISPONIBLE DE DATOS> ip dhcp excluded-address <ULTIMA IP DE HOST DISPONIBLE DE VOZ> ! ip dhcp pool <HOSNAME-SITIO>_DATA network <RED DE DATOS> 255.255.255.248 default-router <ULTIMA IP DE HOST DISPONIBLE DE DATOS> netbios-node-type p-node option 150 ip 10.247.122.3 10.247.122.4 10.247.122.9 10.247.122.11 dns-server 10.247.210.36 200.33.146.233 200.33.146.169 lease 0 4 ! ip dhcp pool <HOSNAME-SITIO>_VOZ network <RED DE VOZ> 255.255.255.248 default-router <ULTIMA IP DE HOST DISPONIBLE DE VOZ> netbios-node-type p-node option 150 ip 10.247.122.3 10.247.122.4 10.247.122.9 10.247.122.11 dns-server 10.247.210.36 200.33.146.233 200.33.146.169 lease 0 4 ! ! ! no ip domain lookup ip domain name spf.segob.com ip name-server 200.33.146.233 ip name-server 200.33.146.169 ip name-server 10.247.210.36 ip name-server 10.237.31.35 ip cef no ipv6 cef ! ! ip domain name spf.segob.com cry key generate rsa ----- ahi te pide le des la longitud de la key, le das 1024 ip ssh time-out 30 ip ssh version 2 ! multilink bundle-name authenticated vpdn enable ! ! cts logging verbose ! controller VDSL 0 ! ! ip access-list extended <HOSNAME-SITIO>_ACL permit ip <RED DE DATOS> 0.0.0.7 any permit ip < RED DE VOZ > 0.0.0.7 any ! crypto keyring KEYR1 pre-shared-key address 189.254.19.52 key abc123 ! crypto isakmp policy 1 encr 3des authentication pre-share group 2 lifetime 84600 crypto isakmp profile <HOSNAME-SITIO>_PROF keyring KEYR1 self-identity user-fqdn [email protected] match identity address 189.254.19.52 255.255.255.255 initiate mode aggressive ! ! crypto ipsec transform-set CRYPTO esp-3des esp-md5-hmac mode tunnel ! !! crypto map ENCRYP client configuration address initiate crypto map ENCRYP 10 ipsec-isakmp set peer 189.254.19.52 set transform-set CRYPTO set isakmp-profile <HOSNAME-SITIO>_PROF match address <HOSNAME-SITIO>_ACL ! ! bba-group pppoe global mac-address autoselect ! ! interface Loopback0 no ip address ! interface ATM0 no ip address shutdown no atm ilmi-keepalive ! ! interface Ethernet0 no ip address shutdown ! interface FastEthernet0 description LAN Salida Voz y Datos switchport access vlan 3 switchport voice vlan 5 no ip address spanning-tree portfast ! interface FastEthernet1 switchport access vlan 3 switchport voice vlan 5 no ip address spanning-tree portfast ! interface FastEthernet2 switchport access vlan 3 switchport voice vlan 5 no ip address ! interface FastEthernet3 description CNOC CONEXION INFINITUM-REF:<XXXXXXXXXX> switchport access vlan 46 bandwidth 10000 no ip address spanning-tree portfast ! interface Vlan1 no ip address shutdown ! interface Vlan3 description DATA ip address <ULTIMA IP DE HOST DISPONIBLE DE DATOS> 255.255.255.248 ip nat inside ip virtual-reassembly in ! interface Vlan5 description VOZ ip address <ULTIMA IP DE HOST DISPONIBLE DE VOZ> 255.255.255.248 ip nat inside ip virtual-reassembly in ! interface Vlan46 description Salida_a_internet ip address <IP QUE TE DIO EL MODEM CON MASCARA EN TU PC> ip virtual-reassembly in crypto map ENCRYP ! interface Dialer0 no ip address shutdown ! ip forward-protocol nd no ip http server no ip http secure-server ! ! ip route 0.0.0.0 0.0.0.0 <IP PUERTA DE ENLACE> ip ssh time-out 30 ip ssh version 2 ! ip sla 10 icmp-echo 10.237.7.37 source-interface Vlan5 frequency 45 ip sla schedule 10 life forever start-time now dialer watch-list 1 ip 189.254.19.52 255.255.255.240 dialer-list 1 protocol ip permit ! route-map clear-df permit 10 match ip address 101 set ip df 0 ! ! control-plane ! ! mgcp behavior rsip-range tgcp-only mgcp behavior comedia-role none mgcp behavior comedia-check-media-src disable mgcp behavior comedia-sdp-force disable ! mgcp profile default ! ! privilege exec level 11 ping privilege exec level 11 show configuration privilege exec level 11 show ! line con 0 login local no modem enable line aux 0 login local transport input ssh line vty 0 4 login local transport input ssh ! scheduler max-task-time 5000 scheduler allocate 20000 1000 !