VPN

ter len 0
Ro_Paresa-VPN2911#sh runn
Building configuration...
Current configuration : 46791 bytes
!
! Last configuration change at 16:48:17 GMT Mon Jul 25 2016 by delucal
version 15.1
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
service linenumber
service sequence-numbers
!
hostname Ro_Paresa-VPN2911
!
boot-start-marker
boot-end-marker
!
!
card type e1 0 0
security authentication failure rate 3 log
security passwords min-length 6
logging buffered informational
logging console informational
logging monitor informational
enable secret 4 gu.xqKHXtxgZlwlDPpkto1HTrtJphuI4krg6rO2Hdmk
!
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication login userauthen local
aaa authentication enable default group tacacs+ enable
aaa authorization commands 2 default group tacacs+ local
aaa authorization network groupauthor local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+

aaa accounting system default start-stop group tacacs+
!
!
!
!
!
aaa session-id common
!
clock timezone GMT -3 0
no network-clock-participate wic 0
!
no ipv6 cef
no ip source-route
ip icmp rate-limit unreachable 1500
ip options drop
ip cef
!
!
!
!
!
no ip bootp server
no ip domain lookup
ip domain name paresa.net
login block-for 60 attempts 3 within 30
login delay 4
login on-failure log
login on-success log
!
multilink bundle-name authenticated
!
!
crypto pki token default removal timeout 0
!
crypto pki trustpoint TP-self-signed-741243131
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-741243131
revocation-check none
rsakeypair TP-self-signed-741243131
!
!
crypto pki certificate chain TP-self-signed-741243131
certificate self-signed 01
30820229 30820192 A0030201 02020101 300D0609 2A864886 F70D0101
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D
69666963 6174652D 37343132 34333133 31301E17 0D313431 31313331
305A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3734
31333130 819F300D 06092A86 4886F70D 01010105 0003818D 00308189
BDE525BB 32A86486 3AAB4EFE D508D0EE 63EFEE16 03742A1D 89562803
49D3EFCA B6B7A8B0 6DE2EF1E E95A00DD 29775CB9 EA029E9C 11421FEC
39F4BEA3 0491D1D2 0315EA25 01ABF22D 40771AA9 84403F99 A0C53C5E
CA88C116 07E3D2A8 4F208FC4 DBC2BEEE B645416F B6B2041E 43FE0F3D
02030100 01A35330 51300F06 03551D13 0101FF04 05300301 01FF301F
05050030
43657274
34333535
1325494F
31323433
02818100
5EA87A57
E5C5E262
4D631430
67BB4047
0603551D
23041830 168014F1 64BC1EB1 6FB696C9 5A8682E9 82A98133 B5548730

1D0E0416 0414F164 BC1EB16F B696C95A 8682E982 A98133B5 5487300D
4886F70D 01010505 00038181 00001408 99C5F5EA 1AA4BDE7 6F1589BB
5192C8F3 DE58897D C6F72ED8 18FF7F0D 5FA3EF99 660C968F 9706A2DC
D9B9A3FA 916E766D 255A4CDC FC6B2EEC 05501662 939B19E7 E20F4C29
3AB41DE9 A58B9E7E 56FBE4C2 F912E92E 45BD64F7 6DD7589C B8A0EC5E
7CCCD68A 5D05B2BC 8B5A184F 57
quit
license udi pid CISCO2911/K9 sn FTX1630AMJD
license boot module c2900 technology-package securityk9
!
!
archive
log config
logging enable
logging size 200
notify syslog contenttype plaintext
hidekeys
path flash:archived-config
maximum 14
write-memory
time-period 1440
object-group network ASA-FirePower
host 10.24.91.42
host 10.24.91.43
!
username vpntodorep secret 5 $1$tyL/$bR7hxGa0Q9Cm1Hbr8XX4V/
username rramirez secret 5 $1$baTG$w5iyYo7xKntz3tVNP.OgP1
username lsegovia secret 5 $1$muSX$awCGkH63p6AXxr.1sSA1k.
username mbogado secret 5 $1$40A8$d7RpXkcTFhjYHiM3FG7be0
username jruiz secret 5 $1$77v1$xNKaUw7iVzyWctikZ4Sve/
username vpnhroa secret 5 $1$OAwA$my/6Gv6lP8QrLp3WL1kp//
username lnarvaez secret 5 $1$OK6E$.w0aCmVeMZXzpW5o6H7s80
username vpntodorepu secret 5 $1$o5U/$LjB9A3Vdvv2KWnA7UvFDa/
username jliuzzi secret 5 $1$XmfI$Ce5k50ijnUDtkOCWy17Lr.
username albertrefg secret 5 $1$CKNM$q8YiBRm.YNiTZO51OVhTu/
username Supportarete secret 5 $1$/vvl$leQ9kedKtb9KleE365rlt0
username fgonzale secret 5 $1$3FO1$Az62JcecrdEfhBVjZajtB/
username nrolon secret 5 $1$tJln$cWut6zHFW2qIvSCteSzah1
username dgenes secret 5 $1$5ir1$31s.vQ42ATRfzAZ7481IT.
username jlocampos secret 5 $1$Fdq/$rTEa.aX3mB.hLtF1wwFmu0
username gbogado secret 5 $1$bGUG$mJZOAlHqRwWmbSlSWBlNU/
username egauto secret 5 $1$1BDm$QBg4fDt3TFf5QFNeVy4bE0
username rzoilan secret 5 $1$0zqi$aS6hYnwf7smc1TyFC.2aQ0
username mllamosas secret 5 $1$b/r3$kGazT7S6QGgdiiliXju4L/
username solupalm secret 5 $1$gCbm$NBUAHAtSMee1yzDE3ph9d0
username hriveros secret 5 $1$YSmX$kzx2flqLDVB1jB6n1bweE0
username pcenturion secret 5 $1$LnUw$kg7WsX.MH4SpizOa.P8zC.
username bbritez secret 5 $1$EOTY$j5d5Z9SS4E3rMXret9RPx1
username jaruiz secret 5 $1$OCnN$kCyDnQhwZjs7BpfJX.Ysk/
username mofe secret 5 $1$b8ZN$4ALUyqLbDBOjtqvDL2dt10
username jherrero secret 5 $1$WY.x$NVJkh8d0B.w7hW/CkXJBJ0
username cidesa password 7 121A0C1317180D
username jfiandro secret 5 $1$K8D1$ewgjF9mmokGPR4x4qAjnf.
username schiriani secret 5 $1$7Uk9$YK.rcSqPxsa.Q/0GWmwso1
username fsanfurg privilege 5 password 7 082C4D5A1D1C17
username cvaldez secret 5 $1$xY94$4W0NkqiEcABxcv6d9l6hf1
username vcampuz secret 5 $1$Dw4A$1jFJZKOz01gwUtSG857xQ1
username dleigue secret 5 $1$.3hU$yBkjoboRKsoA7FVn8GXQd0
username gcegla password 7 000341564F580E010320
1D060355
06092A86
08477A71
2AA109AF
4CF256A5
53775E26
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
username
efiorini secret 5 $1$..Nc$CF4nGtplaMnR5RZXNCfMk1

jperalta secret 5 $1$LMBl$Jfz35Hrs2EpA9.f3.uuKg1
dvaldez secret 5 $1$a4cj$gREIALqzu9zVtk5JJFL0f.
arnoguera secret 5 $1$AIj8$u3ZqnS3VdQE6Sjp5rLVlV1
dbenitez secret 5 $1$PMYv$dVTMouuUM91lNArkd/zqz.
npineda secret 5 $1$aV3t$9nQQ8AeGjemR0UFQbDyj./
nbarreto secret 5 $1$JhR0$gTa3ZaysLVQGahPqIaMnO0
bortiz secret 4 pY0afFinBNi8rrJTtpaCnpX4vy9lMeYOt95i9uthUxk
pquinonez secret 5 $1$wtRE$4MX0iCiq6RxBKSMW8a//o0
jortellado secret 5 $1$I2y0$I1i/4.wV7Rr5HqWtpNP91/
anavajas secret 5 $1$7HG7$54IE8MYFx3dTyHlC.yAVL/
gheisecke secret 5 $1$PrbO$2rAm2PI1k9vOwsSx0WHyY/
anaduarte secret 5 $1$1KID$F9BAJbhCF85kBiE6kySYg/
jpacuna secret 5 $1$3fJT$9bvXft.W89ezlO8r.KW/p1
lcalvete secret 5 $1$LaBV$l6vspkaVCX1btVj/WwdX2/
triveros secret 5 $1$plFE$InebQz8aAJATCDlFiw12a1
gmacen secret 5 $1$wDvM$Ezzvt3XtB013O4P7Z5pYu0
mbenitez secret 5 $1$XNcj$fXFDnMyhnO6yfsw0rEKDA.
jaranda secret 5 $1$qfCD$eHDfyvJd.EZ3gMgwTw0ae.
eyulita secret 5 $1$sNya$.Pz.9l.5oDLxjSMfADbj./
rcristaldo secret 5 $1$..Ha$fFyjx5VK5WHQrhzhLzs3T/
hadorno secret 5 $1$NkDY$AG2tBp0Yk5HHvF9OVx74E1
edaponte secret 5 $1$Iml7$txoYft43x61wkdLbIMC.N0
mgamarra secret 5 $1$SL/.$ZjRP1ZBemPiKmedZFzKWN1
dmoran secret 5 $1$NGyK$lpCaZYr1rtmW./Cfw7NUs1
lcoronel secret 5 $1$..zW$Slk0dTvujnvSWqlO43jXx0
jrlopez secret 5 $1$5/l6$.FIznx9p4Eb613E03PX6M.
hmedina password 7 151A525D4F272E20213D34
dgaona password 7 110D4E525C150A030A2B
csegovia password 7 06055673075D0C1E0A011B0A
dmartinez password 7 030009594D02205E5A0017000D
pcenturi password 7 010352501008030135595C00
cpozzo password 7 0822141642090A0D0804
sacosta password 7 031708584D0E22435D1D18
jfleischman secret 5 $1$bA..$etaRrS88oMF7hC/IewoTn/
mbenavente secret 5 $1$lkxk$mgGRMKWIZFbIRc6H3fuBs0
cflorent password 7 000746534F5D07091D24425A
elarosa password 7 104B58484E1B131903172B
lcapristo password 7 060A5D74074D0809171E011F03
lcaniza password 7 10425D4D4E141305051E2B
wroman password 7 01045351101909022042
jferreira password 7 094616515203120019090D382A
jherrera password 7 141D435A470C2F39362D2134
chlopez password 7 01100E5708400A00314954
maurelio password 7 10435B484E16071909082324
pmesquita password 7 044B5956442C495D18
famarilla password 7 01155254100A0B0E3345420518
pgodoy password 7 051B555F6A4B410D161C
mservicios password 7 0702731C051A1C17011B08050B39
mnikkinen password 7 130816005D5A4F24222F
ccaramico password 7 0837424D19181712010A
supportHP password 7 06151A721E0519090A0506
cpardo password 7 01105755101B071D2543
vlezcano password 7 051D575E6A404B131A04191D
alopez password 7 02075D02400A00314954
obrizuela password 7 07007914050B0B0C0D070E0005
jocaceres password 7 141D1D5E594F292A272D213031
jlfleitas password 7 130F1B475D4702262E2D3C3226
oacosta password 7 050453586A4D4D060A1116
rocampos password 7 0214540A40090C20415E060A
username admin password 7 013E090A5F0408082E

username oplocal privilege 10 password 7 1438025A5E57696F
username monitor privilege 7 password 7 03256926292C650F1F
username paresaloc privilege 2 password 7 1139181712010A
username mquinonez privilege 15 secret 5 $1$P1.3$gYexjk.lckzNZ3aXofsOt0
username gnunez secret 4 0JpMQmdb1xgo4WWjSCdQt4.RRsK8XURSVUQJDHo/.AQ
username jpinanez secret 4 awjQ12sHXmlQcgCuEFc/Acw8xbHkatqrAipeKzCIqQk
username lgaleano secret 4 W27ah9HnyU5j/DNktpc9xMkox/KoPF598MzuVMGSYKw
username joselopez secret 4 lBQi/5ZSaNq9HfYekgY6.IqYNZEGoqGlZ0nqW3GrRfY
username cstuardo secret 4 km7yA68JNXzihVB5gCd.fgl5/4z/Lmg4s5Uc.36iwKI
username arivas secret 4 vRhwPuSZcdBA2NNtxfktvHftA7DJPO4Vq21ubvK5O4c
username esilva secret 4 jizcObrgd7Q/AhyikVRHt8naTLiByIwBPRBd2bIzNxg
username jflorentin secret 4 EgT7v4g6n1nxQ3x3AgTtBD3EtnVs2DI2TEVudX/3xK.
username jruffinelli secret 4 Q1uS3ShNmoEcagyk04d5O8pl7CDNgDMwh6dD6JIIHxw
username sbenegas secret 4 9lSwaJ7AS.PmVniSdqwpljrl8Zq4SJIlNed45143Zms
username netsupport password 7 094F41071F541016581A55292E
!
redundancy
!
!
!
!
controller E1 0/0/0
framing NO-CRC4
channel-group 0 timeslots 1-30
!
ip tcp synwait-time 10
ip ftp source-interface GigabitEthernet0/0
ip tftp source-interface GigabitEthernet0/0
ip ssh time-out 90
ip ssh logging events
ip ssh version 2
!
track 10 ip sla 10
delay down 3 up 6
!
class-map match-any business
match ip dscp af21
match ip dscp af22
match ip dscp af23
match ip precedence 2
match access-group name business
class-map match-any datos_criticos
match ip dscp af31
match ip dscp af32
match ip dscp af33
match access-group name critical
class-map match-any mgmnt_routing
match ip dscp cs6
match ip dscp cs7
class-map match-any video
match ip dscp af41
match ip dscp af42
match ip dscp af43
class-map match-any voice
match ip dscp cs5
match ip dscp ef
match access-group name Video

class-map match-any scavenger
match access-group name Scavenger
!
!
policy-map LAN_in
class mgmnt_routing
class video
set ip precedence 4
class datos_criticos
set ip precedence 3
class business
set ip precedence 2
class scavenger
set ip precedence 1
class voice
set ip precedence 5
policy-map QoS
class voice
priority percent 50
class mgmnt_routing
bandwidth percent 5
queue-limit 32 packets
class video
bandwidth percent 2
class datos_criticos
bandwidth percent 20
class business
bandwidth percent 5
class scavenger
bandwidth percent 8
class class-default
bandwidth percent 5
policy-map QoS_shape_out
class class-default
shape average 1920000
service-policy QoS
!
!
!
crypto isakmp policy 10
encr aes 256
authentication pre-share
group 5
lifetime 7200
!
encr 3des
group 2
lifetime 3600
!
encr 3des
hash md5
group 2
!
encr 3des
hash md5
!
hash md5
group 2
!
hash md5
!
encr aes 256
group 5
!
lifetime 28800
crypto isakmp key buenosairesparaguay001 address 200.32.101.217 no-xauth
crypto isakmp key chile101paraguay address 200.42.174.178 no-xauth
crypto isakmp key onondivemi-paresa address 190.128.128.146 no-xauth
crypto isakmp key 123prueba321pY@@jojo address 200.85.39.254 no-xauth
crypto isakmp key CI1d93$%SD7tV$% address 201.217.17.78 no-xauth
crypto isakmp key p@r3s4_PuNt0.pY&t3ch-2012 address 190.128.232.122 no-xauth
crypto isakmp key S3p5@#P@R35@_2012 address 181.40.81.34 no-xauth
crypto isakmp key S3p5@#P@R35@_2012 address 201.222.53.218
crypto isakmp key buenosairesparaguay001 address 200.27.136.158
crypto isakmp keepalive 10
crypto isakmp client configuration address-pool local vpnpool
!
crypto isakmp client configuration group Soporte
key Aratei27+
dns 10.24.89.60 10.24.88.28
domain paresa.net
pool vpnpool2
acl paresa-crypto
!
crypto isakmp client configuration group Soporte2
key Apy105+
dns 10.24.88.28
domain paresa.com.py
pool vpnpool
acl paresa-crypto2
!
crypto isakmp client configuration group Usuarios
key Aratei28+
dns 10.24.89.60 10.24.88.28
domain paresa.net
pool vpnpool
acl paresa-crypto
!
crypto isakmp client configuration group PHElectronica
key Elect21!
dns 10.24.89.60 10.24.88.28

domain paresa.net
pool vpnpoolPH1
acl PHElectronica
!
crypto isakmp client configuration group ProveedoresEF
key EF21proveedor
dns 10.24.89.60 10.24.88.28
domain paresa.net
pool vpnpoolEF
acl ProveedoresEF
!
crypto isakmp client configuration group SAP
key Yvaga28+
dns 10.24.89.60 10.24.88.28
domain paresa.net
pool vpnpoolCEXSAP
acl VPN-CEXSAP
!
crypto isakmp client configuration group WebServices
key Websvc21+
dns 10.24.89.60 10.24.88.28
domain paresa.net
pool vpnpoolWS
acl WebServices
!
crypto isakmp client configuration group soporte_remoto
key p3S#Wis2920302dosTrecse
domain paresa.net
pool pool_2013
acl vpn_2013
netmask 255.255.255.248
!
!
crypto ipsec transform-set aes256-sha esp-aes 256 esp-sha-hmac
crypto ipsec transform-set 3des-md5 esp-3des esp-md5-hmac
crypto ipsec transform-set des-md5 esp-des esp-md5-hmac
crypto ipsec transform-set 3des-sha esp-3des esp-sha-hmac
!
crypto ipsec profile cidesa
set transform-set aes256-sha
set pfs group1
!
crypto ipsec profile sepsa
set transform-set 3des-sha
!
!
crypto dynamic-map ParesaVPN 1
reverse-route
!
crypto dynamic-map SDM_DYNMAP_1 1
set transform-set 3des-md5
reverse-route
!
crypto dynamic-map VPNDY-CEXSAP 10
set transform-set 3des-md5
reverse-route
!
!
crypto map PUNTOPY 9 ipsec-isakmp

description VPN to SEPSA
set peer 181.40.81.34
set transform-set 3des-sha
match address vpn-sepsa-tigo
crypto map PUNTOPY 10 ipsec-isakmp
description VPN_PuntoPy
set peer 190.128.232.122
set pfs group2
match address vpn-puntopy
!
crypto map TIGO_primario client authentication list userauthen
crypto map TIGO_primario isakmp authorization list groupauthor
crypto map TIGO_primario client configuration address respond
crypto map TIGO_primario 2 ipsec-isakmp
description vpn-chile
set peer 200.27.136.158
set transform-set des-md5
set pfs group1
match address vpn-chile-new
crypto map TIGO_primario 5000 ipsec-isakmp dynamic ParesaVPN
crypto map TIGO_primario 5001 ipsec-isakmp dynamic VPNDY-CEXSAP
crypto map TIGO_primario 5002 ipsec-isakmp dynamic SDM_DYNMAP_1
!
!
!
!
!
interface Loopback100
ip address 10.24.88.77 255.255.255.255
!
interface Tunnel30
description -->Conectado a CIDESA
ip address 10.77.77.2 255.255.255.252
ip access-group cidesa_allow_in in
ip mtu 1380
ip flow ingress
ip tcp adjust-mss 1360
tunnel source 200.85.62.18
tunnel mode ipsec ipv4
tunnel destination 201.217.17.78
tunnel protection ipsec profile cidesa
!
interface Tunnel40
description Conectado a --> Sepsa Teisa
ip address 10.10.1.2 255.255.255.252
ip flow ingress
ip flow egress
tunnel source 200.85.62.18
tunnel mode ipsec ipv4
tunnel destination 201.222.53.218
tunnel protection ipsec profile sepsa
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
description description Conectada a la Zona Outside del Pix
ip address 192.168.10.12 255.255.255.0

no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip nat inside
ip virtual-reassembly in
ip policy route-map e1-frame
duplex full
speed auto
service-policy input LAN_in
!
description ----> Conectado a Trunk 3750 P23
no ip address
duplex auto
speed auto
!
interface GigabitEthernet0/1.216
description CTA158789 internet temporal VC Salon PRV
encapsulation dot1Q 216
!
description ----> TIGO FTTH
ip address 200.85.45.98 255.255.255.252
ip access-group TIGO-IN in
ip nat outside
crypto map TIGO_primario
!
description -->Utilizado para levantar la VPN con CIDESA
ip address 200.85.62.18 255.255.255.252
ip mtu 1380
ip flow ingress
ip flow egress
ip nat outside
ip tcp adjust-mss 1360
crypto map PUNTOPY
!
description --> Conectado al puerto SW Gi0/1
no ip address
load-interval 30
duplex auto
speed auto
!
ip address 10.24.70.1 255.255.255.0
!
interface Serial0/0/0:0
description --->Conectado a Chile via E1 ARGENTINA<--ip address 192.168.240.1 255.255.255.252
ip accounting output-packets
encapsulation frame-relay
load-interval 30
frame-relay interface-dlci 17
service-policy output QoS_shape_out
!
router bgp 65019
bgp log-neighbor-changes
neighbor 192.168.240.2 remote-as 10834
!
address-family ipv4
redistribute connected route-map redistribute-connected
redistribute static
neighbor 192.168.240.2 activate
neighbor 192.168.240.2 soft-reconfiguration inbound
distribute-list filter-bgp-e1 in
exit-address-family
!
ip local pool vpnpool 192.168.40.63 192.168.40.88
ip local pool vpnpool2 192.168.40.20 192.168.40.23
ip local pool vpnpool2 192.168.40.28 192.168.40.35
ip local pool vpnpoolPH 192.168.40.24 192.168.40.27
ip local pool vpnpoolEF 192.168.80.33 192.168.80.38
ip local pool vpnpoolCEXSAP 192.168.40.57 192.168.40.62
ip local pool vpnpoolWS 192.168.40.36 192.168.40.39
ip forward-protocol nd
!
no ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 600 life 86400 requests 10000
!
ip nat inside source list internet interface GigabitEthernet0/1.434 overload
ip nat inside source static tcp 192.168.50.11 25 200.85.45.98 25 route-map SDM_R
MAP_1 extendable
ip nat inside source static tcp 192.168.50.123 80 200.85.45.98 80 extendable
ip nat inside source static tcp 192.168.50.50 3299 200.85.45.98 3299 route-map S
extendable
ip route 0.0.0.0 0.0.0.0 200.85.45.97
ip route 10.24.88.0 255.255.252.0 192.168.10.1 name Inside_networks
ip route 138.35.0.0 255.255.0.0 192.168.10.1 name HPE
ip route 151.162.165.15 255.255.255.255 200.85.45.97 name PAG_COCA_COLA
ip route 151.162.165.91 255.255.255.255 200.85.45.97 name PAG_COCA_COLA
ip route 172.18.80.0 255.255.255.252 10.10.1.1 name LAN_SEPSA
ip route 180.182.0.0 255.255.0.0 192.168.10.1
ip route 180.183.0.0 255.255.0.0 192.168.10.1
ip route 181.40.16.19 255.255.255.255 200.85.45.97 name google.com.py
ip route 181.40.16.57 255.255.255.255 200.85.45.97 name google.com.py
ip route 181.40.64.235 255.255.255.255 200.85.45.97 name tbo.tigo.py
ip route 181.40.65.16 255.255.255.255 200.85.45.97 name maps.google.com

ip route 181.40.81.34 255.255.255.255 200.85.62.17 name "SEPSA NUEVO"
ip route 181.40.91.94 255.255.255.255 200.85.45.97 name CLASIPAR
ip route 181.40.116.66 255.255.255.255 200.85.45.97 name INAN
ip route 181.40.127.70 255.255.255.255 200.85.45.97 name mjt.gov.py
ip route 183.159.0.0 255.255.0.0 192.168.10.1
ip route 183.160.0.0 255.255.0.0 192.168.10.1
ip route 190.128.128.144 255.255.255.252 200.85.45.97 name AVERIGUAR
ip route 190.128.232.122 255.255.255.255 200.85.62.17 name ----->A_PuntoPy
ip route 192.168.0.1 255.255.255.255 200.85.62.17 name ----->WebServer_PuntoPy_2
ip route 192.168.0.18 255.255.255.255 200.85.62.17 name ----->WebServer_PuntoPy
ip route 192.168.0.20 255.255.255.255 200.85.62.17 name ----->WebServer_PuntoPy_
3
ip route 192.168.0.103 255.255.255.255 200.85.62.17 name sepsa
ip route 192.168.0.222 255.255.255.255 200.85.62.17 name ----->Prueba
ip route 192.168.20.10 255.255.255.255 192.168.10.1
ip route 192.168.50.2 255.255.255.255 192.168.10.1
ip route 192.168.50.10 255.255.255.255 192.168.10.1
ip route 192.168.50.11 255.255.255.255 192.168.10.1
ip route 192.168.50.15 255.255.255.255 GigabitEthernet0/2
ip route 192.168.50.15 255.255.255.255 192.168.10.1
ip route 192.168.50.50 255.255.255.255 192.168.10.1
ip route 192.168.50.123 255.255.255.255 192.168.10.1
ip route 192.168.55.15 255.255.255.255 192.168.10.1
ip route 192.168.55.100 255.255.255.255 192.168.10.1
ip route 192.168.101.0 255.255.255.0 10.77.77.1 name LAN_CIDESA
ip route 192.168.108.254 255.255.255.255 192.168.10.1
ip route 192.168.254.1 255.255.255.255 192.168.10.1
ip route 200.108.136.101 255.255.255.255 200.85.62.17 name sepsa
ip route 201.217.17.78 255.255.255.255 200.85.62.17 name CIDESA
ip route 201.222.53.218 255.255.255.255 200.85.62.17 name WAN_SEPSA
ip route 207.169.88.0 255.255.255.0 192.168.10.1 name HP
ip tacacs source-interface GigabitEthernet0/0
!
ip access-list standard AccesoSW
permit 207.169.88.57
permit 207.169.88.49
permit 199.42.77.131
permit 207.169.88.1
permit 207.169.88.100
permit 207.169.88.190
permit 207.169.88.134
permit 207.169.88.135
permit 207.169.88.220
permit 207.169.88.204
permit 207.169.88.202
permit 207.169.88.203
permit 207.169.88.200
deny any log
ip access-list standard admin
permit 190.128.219.210
permit 10.24.88.0 0.0.1.255
permit 192.168.10.0 0.0.0.255

ip access-list standard filter-bgp-e1
permit 181.46.0.0 0.0.255.255
permit 183.55.0.0 0.0.255.255
permit 183.56.0.0 0.0.255.255
permit 181.44.0.0 0.0.255.255
permit 181.45.0.0 0.0.255.255
permit 183.57.0.0 0.0.255.255
permit 183.59.0.0 0.0.255.255
permit 183.61.0.0 0.0.255.255
permit 183.62.0.0 0.0.255.255
permit 181.32.0.0 0.0.255.255
permit 181.40.0.0 0.0.255.255
permit 183.70.0.0 0.0.255.255
permit 10.0.0.0 0.255.255.255
permit 181.102.0.0 0.0.255.255
permit 181.103.0.0 0.0.255.255
permit 181.42.0.0 0.0.255.255
permit 192.168.225.0 0.0.0.255
permit 183.183.0.0 0.0.255.255
permit 207.169.83.0 0.0.0.255
permit 207.169.84.0 0.0.0.255
permit 207.169.88.0 0.0.0.255
permit 138.35.128.0 0.0.0.255
permit 138.35.156.0 0.0.0.255
permit 148.91.129.0 0.0.0.255
permit 148.91.130.0 0.0.0.255
permit 148.91.131.0 0.0.0.255
permit 148.91.132.0 0.0.0.255
permit 148.91.133.0 0.0.0.255
permit 183.53.0.0 0.0.255.255
permit 181.142.0.0 0.0.255.255
ip access-list standard redistribute-connected
deny 192.168.10.0 0.0.0.255
permit any
!
ip access-list extended PHElectronica
remark PH Electronica - Proveedor sistema Monitor Maselli Laboratorio
remark SDM_ACL Category=4
permit ip host 10.24.89.60 192.168.40.24 0.0.0.3
permit ip host 10.24.88.38 192.168.40.24 0.0.0.3
permit ip host 10.24.88.39 192.168.40.24 0.0.0.3
permit ip host 10.24.88.40 192.168.40.24 0.0.0.3
ip access-list extended ProveedoresEF
permit ip host 10.24.88.25 192.168.80.32 0.0.0.7
permit tcp 192.168.80.32 0.0.0.7 host 181.44.11.1 range 8471 8476
permit tcp 192.168.80.32 0.0.0.7 host 181.44.11.2 range 8471 8476
permit ip host 181.44.11.1 192.168.80.32 0.0.0.7
permit ip host 10.24.88.21 192.168.80.32 0.0.0.7
permit ip 192.168.80.32 0.0.0.7 host 10.24.88.21
ip access-list extended VPN-CEXSAP
permit ip host 181.45.1.6 192.168.40.56 0.0.0.7
permit ip host 181.45.1.3 192.168.40.56 0.0.0.7
permit ip host 10.24.88.46 192.168.40.56 0.0.0.7
permit ip host 10.24.88.23 192.168.40.56 0.0.0.7
permit ip host 181.44.96.70 192.168.40.56 0.0.0.7
permit ip host 10.24.88.40 192.168.40.56 0.0.0.7
permit ip host 181.45.1.5 192.168.40.56 0.0.0.7
permit ip host 10.24.88.41 192.168.40.56 0.0.0.7
permit ip host 181.45.1.4 192.168.40.56 0.0.0.7
permit ip host 181.45.1.107 192.168.40.56 0.0.0.7

permit ip host 181.46.1.107 192.168.40.56 0.0.0.7
permit ip host 181.102.1.6 192.168.40.56 0.0.0.7
permit ip host 181.102.1.3 192.168.40.56 0.0.0.7
permit ip host 181.102.1.5 192.168.40.56 0.0.0.7
permit ip host 181.102.1.4 192.168.40.56 0.0.0.7
permit ip host 181.102.1.107 192.168.40.56 0.0.0.7
permit ip host 10.24.88.21 192.168.40.56 0.0.0.7
ip access-list extended Video
permit ip host 10.24.88.15 host 183.183.8.70
ip access-list extended WebServices
permit ip host 181.40.11.3 192.168.40.32 0.0.0.7
permit ip host 10.24.88.39 192.168.40.32 0.0.0.7
permit ip host 10.24.88.35 192.168.40.32 0.0.0.7
ip access-list extended business
permit ip any 181.42.98.0 0.0.0.255
permit ip any 181.42.96.0 0.0.0.255
ip access-list extended cidesa_allow_in
permit ip host 192.168.101.111 any
permit ip 192.168.101.0 0.0.0.255 host 10.24.88.25
permit ip 192.168.101.0 0.0.0.255 host 10.24.88.29
permit icmp any any
ip access-list extended critical
permit ip any host 181.102.1.10
ip access-list extended e1-frame
deny ip host 10.24.91.43 any
deny ip any host 181.40.16.57
deny ip any 181.40.16.0 0.0.0.255
permit ip any 181.46.0.0 0.0.255.255
permit ip any 183.55.0.0 0.0.255.255
permit ip any 183.56.0.0 0.0.255.255
permit ip any 181.44.0.0 0.0.255.255
permit ip any 181.45.0.0 0.0.255.255

permit ip any 183.57.0.0 0.0.255.255
permit ip any 183.59.0.0 0.0.255.255
permit ip any 183.61.0.0 0.0.255.255
permit ip any 183.62.0.0 0.0.255.255
permit ip any 181.32.0.0 0.0.255.255
permit ip any 181.40.0.0 0.0.255.255
permit ip any 183.70.0.0 0.0.255.255
permit ip any 10.57.0.0 0.0.255.255
permit ip 10.24.88.0 0.0.1.255 10.10.100.0 0.0.0.255
permit ip 10.24.88.0 0.0.1.255 10.10.12.0 0.0.0.255
permit ip 10.24.88.0 0.0.1.255 10.10.11.0 0.0.0.255
permit ip 10.24.88.0 0.0.1.255 10.10.13.0 0.0.0.255
permit ip any 181.102.0.0 0.0.255.255
permit ip any 181.103.0.0 0.0.255.255
deny ip 10.24.88.0 0.0.1.255 host 181.103.30.10
permit ip any 181.42.0.0 0.0.255.255
permit ip any 192.168.0.0 0.0.255.255
permit ip any 183.183.0.0 0.0.255.255
permit ip any 207.169.83.0 0.0.0.255
permit ip any 207.169.84.0 0.0.0.255
permit ip any 207.169.88.0 0.0.0.255
permit ip any 138.35.128.0 0.0.0.255
permit ip any 138.35.156.0 0.0.0.255
permit ip any 148.91.129.0 0.0.0.255
permit ip any 148.91.130.0 0.0.0.255
permit ip any 148.91.131.0 0.0.0.255
permit ip any 148.91.132.0 0.0.0.255
permit ip any 148.91.133.0 0.0.0.255
permit ip any 183.53.0.0 0.0.255.255
permit ip any 181.142.0.0 0.0.255.255
ip access-list extended internet
deny ip any 181.42.0.0 0.0.255.255
deny ip any 183.183.0.0 0.0.255.255
permit ip any 181.40.16.0 0.0.0.255
deny ip any 172.18.80.0 0.0.0.3

deny ip any 181.102.0.0 0.0.255.255
deny ip any 181.103.0.0 0.0.255.255
deny ip 192.168.109.0 0.0.0.255 192.168.109.0 0.0.0.255
deny ip host 10.24.89.69 host 172.18.80.1
permit ip 192.168.109.0 0.0.0.255 any
deny ip host 10.24.89.69 host 200.108.136.101
deny ip any 181.46.0.0 0.0.255.255
deny ip any 181.45.0.0 0.0.255.255
deny ip any 192.168.0.0 0.0.255.255
deny ip any 10.0.0.0 0.255.255.255
deny ip any 183.61.0.0 0.0.255.255
deny ip any 183.62.0.0 0.0.255.255
deny ip any 183.59.0.0 0.0.255.255
deny ip any 183.57.0.0 0.0.255.255
deny ip any 183.56.0.0 0.0.255.255
deny ip any 183.55.0.0 0.0.255.255
deny ip any 181.40.0.0 0.0.255.255
deny ip any 181.32.0.0 0.0.255.255
deny ip any 181.44.0.0 0.0.255.255
permit ip 10.24.88.0 0.0.3.255 any
deny ip host 192.168.55.15 any
ip access-list extended internet-correo
permit tcp host 192.168.108.254 host 200.85.45.98 eq www
permit tcp host 192.168.108.254 host 200.85.45.98 eq 8080
permit tcp host 192.168.108.253 host 200.85.45.98 eq www
ip access-list extended paresa-crypto
permit ip host 192.168.50.50 192.168.40.0 0.0.0.255
permit ip 192.168.10.0 0.0.0.255 192.168.40.0 0.0.0.255
permit ip 181.44.0.0 0.0.255.255 192.168.40.0 0.0.0.255
permit ip 183.0.0.0 0.255.255.255 192.168.40.0 0.0.0.255
permit ip 183.160.0.0 0.0.255.255 192.168.40.0 0.0.0.255
permit ip 180.182.0.0 0.0.255.255 192.168.40.0 0.0.0.255
permit ip host 192.168.50.2 192.168.40.0 0.0.0.255

permit ip 181.45.0.0 0.0.255.255 192.168.40.0 0.0.0.255
permit ip 10.24.88.0 0.0.0.255 192.168.40.0 0.0.0.255
permit ip 10.24.89.0 0.0.0.255 192.168.40.0 0.0.0.255
permit ip 181.102.0.0 0.0.255.255 192.168.40.0 0.0.0.255
permit ip 181.46.0.0 0.0.255.255 192.168.40.0 0.0.0.255
permit ip 10.24.90.0 0.0.0.255 192.168.40.0 0.0.0.255
permit ip 10.24.91.0 0.0.0.255 192.168.40.0 0.0.0.255
permit ip 181.42.0.0 0.0.255.255 192.168.40.0 0.0.0.255
ip access-list extended paresa-crypto2
permit ip host 10.24.88.29 192.168.40.20 0.0.0.3
permit ip host 10.24.89.66 192.168.40.20 0.0.0.3
permit ip host 10.24.88.23 192.168.40.20 0.0.0.3
permit ip host 10.24.89.56 192.168.40.20 0.0.0.3
permit ip host 10.24.88.38 192.168.40.20 0.0.0.3
permit ip host 10.24.89.57 192.168.40.20 0.0.0.3
permit ip host 10.24.88.37 192.168.40.20 0.0.0.3
permit ip host 10.24.88.46 192.168.40.20 0.0.0.3
permit ip host 10.24.88.39 192.168.40.20 0.0.0.3
permit ip host 10.24.88.40 192.168.40.20 0.0.0.3
permit ip host 10.24.88.17 192.168.40.20 0.0.0.3
permit ip host 10.24.88.32 192.168.40.20 0.0.0.3
permit ip host 10.24.88.21 192.168.40.20 0.0.0.3
permit ip host 10.24.88.25 192.168.40.20 0.0.0.3
permit ip host 10.24.89.60 192.168.40.20 0.0.0.3
permit ip host 10.24.88.41 192.168.40.20 0.0.0.3
permit ip host 10.24.89.69 192.168.40.20 0.0.0.3
permit ip host 10.24.89.51 192.168.40.20 0.0.0.3
permit ip host 10.24.88.48 192.168.40.20 0.0.0.3
permit ip host 10.24.88.49 192.168.40.20 0.0.0.3
permit ip host 10.24.89.54 192.168.40.20 0.0.0.3
permit ip host 10.24.89.45 192.168.40.20 0.0.0.3
permit ip host 10.24.89.55 192.168.40.20 0.0.0.3
permit ip host 10.24.89.58 192.168.40.20 0.0.0.3
permit ip host 10.24.88.14 192.168.40.20 0.0.0.3
permit ip host 10.24.88.28 192.168.40.20 0.0.0.3
permit ip host 10.24.88.53 192.168.40.20 0.0.0.3
permit ip host 10.24.89.67 192.168.40.20 0.0.0.3
ip access-list extended vpn-chile-new
permit ip 10.24.0.0 0.0.255.255 181.0.0.0 0.255.255.255
permit ip 180.182.0.0 0.0.255.255 181.0.0.0 0.255.255.255
permit ip 183.159.0.0 0.0.255.255 181.0.0.0 0.255.255.255
permit ip 183.160.0.0 0.0.255.255 181.0.0.0 0.255.255.255
ip access-list extended vpn-puntopy
permit ip 10.24.88.0 0.0.1.255 192.168.0.0 0.0.0.255
ip access-list extended vpn-sepsa-tigo
ip access-list extended vpn_2013
permit ip 192.168.109.0 0.0.0.15 192.168.109.16 0.0.0.7
!
ip sla 10
icmp-echo 192.168.240.2
threshold 3000
frequency 6
ip sla schedule 10 life forever start-time now
logging source-interface GigabitEthernet0/0
logging 207.169.88.100
logging 138.35.219.13
logging 138.35.216.13
access-list 15 permit 207.169.88.57
access-list 15 permit 138.35.0.0 0.0.255.255
access-list 99 remark GNTA SNMP Access
access-list 104 remark SDM_ACL Category=2
access-list 104 deny ip host 192.168.50.11
access-list 104 permit ip host 192.168.50.11
!
!
!
log
host 192.168.80.38
host 192.168.80.37
192.168.80.32 0.0.0.7
host 192.168.80.36
host 192.168.80.35
host 192.168.80.34
host 192.168.80.33
host 192.168.80.32
host 192.168.80.31
host 192.168.80.30
192.168.40.24 0.0.0.3
host 192.168.40.19
host 192.168.40.18
host 192.168.40.17
host 192.168.40.16
host 192.168.40.15
host 192.168.40.14
host 192.168.40.13
host 192.168.40.12
host 192.168.40.11
host 192.168.40.10
host 192.168.40.9
host 192.168.40.8
host 192.168.40.7
host 192.168.40.6
host 192.168.40.5
host 192.168.40.4
host 192.168.40.3
host 192.168.40.2
host 192.168.40.1
192.168.40.20 0.0.0.3
192.168.40.0 0.0.0.63
any
!
route-map e1-frame permit 10
match ip address e1-frame
set ip next-hop verify-availability 192.168.240.2 10 track 10
!
route-map Internet permit 10
match ip address internet
!
route-map redistribute-connected permit 10
match ip address redistribute-connected
!
route-map SDM_RMAP_1 permit 1
match ip address 104
!
!
snmp-server community ParESa2010pY RO
snmp-server community 4nd1n4_RO RO 15
snmp-server community GN0CR3AD RO 99
snmp-server community mgmtgn0c RW 99
snmp-server ifindex persist
snmp-server trap-source GigabitEthernet0/0
snmp-server contact HPE Operations
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps vrrp
snmp-server enable traps transceiver all
snmp-server enable traps ds1
snmp-server enable traps call-home message-send-fail server-fail
snmp-server enable traps tty
snmp-server enable traps eigrp
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
snmp-server enable traps ospf cisco-specific state-change shamlink interface
snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps license
snmp-server enable traps envmon
snmp-server enable traps ethernet cfm cc mep-up mep-down cross-connect loop conf
ig
snmp-server enable traps ethernet cfm crosscheck mep-missing mep-unknown service
-up
snmp-server enable traps flash insertion removal
snmp-server enable traps c3g
snmp-server enable traps ds3
snmp-server enable traps adslline
snmp-server enable traps vdsl2line
snmp-server enable traps icsudsu
snmp-server enable traps isdn call-information
snmp-server enable traps isdn layer2
snmp-server enable traps isdn chan-not-avail
snmp-server enable traps isdn ietf
snmp-server enable traps ds0-busyout
snmp-server enable traps ds1-loopback
snmp-server enable traps energywise
snmp-server enable traps vstack
snmp-server enable traps mac-notification
snmp-server enable traps bgp

snmp-server enable traps isis
snmp-server enable traps rf
snmp-server enable traps aaa_server
snmp-server enable traps atm subif
snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-c
hange inconsistency
snmp-server enable traps memory bufferpeak
snmp-server enable traps cnpd
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps entity
snmp-server enable traps fru-ctrl
snmp-server enable traps resource-policy
snmp-server enable traps event-manager
snmp-server enable traps frame-relay multilink bundle-mismatch
snmp-server enable traps frame-relay
snmp-server enable traps frame-relay subif
snmp-server enable traps hsrp
snmp-server enable traps ipmulticast
snmp-server enable traps msdp
snmp-server enable traps mvpn
snmp-server enable traps nhrp nhs
snmp-server enable traps nhrp nhc
snmp-server enable traps nhrp nhp
snmp-server enable traps nhrp quota-exceeded
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-messa
ge
snmp-server enable traps pppoe
snmp-server enable traps cpu threshold
snmp-server enable traps rsvp
snmp-server enable traps syslog
snmp-server enable traps l2tun session
snmp-server enable traps l2tun pseudowire status
snmp-server enable traps vtp
snmp-server enable traps ipsla
snmp-server enable traps bfd
snmp-server enable traps firewall serverstatus
snmp-server enable traps isakmp policy add
snmp-server enable traps isakmp policy delete
snmp-server enable traps isakmp tunnel start
snmp-server enable traps isakmp tunnel stop
snmp-server enable traps ipsec cryptomap add
snmp-server enable traps ipsec cryptomap delete
snmp-server enable traps ipsec cryptomap attach
snmp-server enable traps ipsec cryptomap detach
snmp-server enable traps ipsec tunnel start
snmp-server enable traps ipsec tunnel stop
snmp-server enable traps ipsec too-many-sas
snmp-server enable traps vrfmib vrf-up vrf-down vnet-trunk-up vnet-trunk-down
snmp-server host 207.169.88.135 Fz9kFcHy
snmp-server host 138.35.216.13 OPSMGTPL
snmp-server host 138.35.219.13 OPSMGTPL
tacacs-server host 207.169.88.16
tacacs-server key 7 044B4852571D485E033615130604231323
!
!
!
control-plane
!
!
privilege exec level 1 dir
privilege exec level 1 traceroute
privilege exec level 1 ping
privilege exec level 1 terminal monitor
privilege exec level 1 terminal
privilege exec level 7 show snmp
privilege exec level 1 show ip eigrp vrf
privilege exec level 1 show ip eigrp
privilege exec level 10 show ip interface brief
privilege exec level 10 show ip interface
privilege exec level 1 show ip
privilege exec level 7 show clock
privilege exec level 1 show running-config
privilege exec level 1 show configuration
privilege exec level 1 show logging
privilege exec level 7 show interfaces
privilege exec level 1 show
banner motd ^C
*******************************************************************
Access to this computer system and associated network, computer
resources, or data is restricted to those authorized by HPE.
This computer and related networks, resources or data may only be
used for business purposes of HPE and its customers. Use by
unauthorized individual or for an unauthorized purpose is a
violation of Federal and/or State law. Violators will be prosecuted.
For technical assistance contact HPE Operations.
********************************************************************^C
!
line con 0
exec-timeout 30 0
password 7 080C4340080B061F43
transport preferred none
stopbits 1
line aux 0
exec-timeout 30 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
access-class 15 in
exec-timeout 30 0
password 7 0539091A74185A0C0B
logging synchronous
transport input telnet
transport output telnet
line vty 5 15
access-class 15 in
exec-timeout 30 0
password 7 122B0A02475F180138
logging synchronous
transport input telnet
!
scheduler allocate 20000 1000

ntp source GigabitEthernet0/0
ntp server 207.169.88.1
ntp server 138.35.151.49 prefer
ntp server 138.35.151.177
ntp server 138.35.151.113
end
Ro_Paresa-VPN2911#sh ip rou
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
+ - replicated route, % - next hop override
Gateway of last resort is 200.85.45.97 to network 0.0.0.0
S*
B
B
B
B
B
B
B
S
C
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
S
B
S
S
S
S
S
B
0.0.0.0/0 [1/0] via 200.85.45.97

10.0.0.0/8 is variably subnetted, 27 subnets, 7 masks
10.10.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.10.100.0/24 [20/0] via 192.168.240.2, 01:40:24
10.11.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.12.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.13.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.14.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.24.80.0/24 [20/0] via 192.168.240.2, 00:53:12
10.24.88.0/22 [1/0] via 192.168.10.1
10.24.88.77/32 is directly connected, Loopback100
10.24.91.0/24 [20/0] via 192.168.240.2, 00:53:12
10.24.92.0/24 [20/0] via 192.168.240.2, 00:53:12
10.30.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.30.52.0/25 [20/0] via 192.168.240.2, 00:53:12
10.40.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.50.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.51.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.60.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.70.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.90.0.0/16 [20/0] via 192.168.240.2, 00:53:12
10.97.0.64/30 [20/0] via 192.168.240.2, 00:53:12
10.97.0.68/30 [20/0] via 192.168.240.2, 00:53:12
10.105.10.231/32 [20/0] via 192.168.240.2, 01:40:24
10.105.11.226/32 [20/0] via 192.168.240.2, 01:40:24
10.105.11.229/32 [20/0] via 192.168.240.2, 01:40:24
10.200.200.0/24 [20/0] via 192.168.240.2, 01:40:24
10.241.3.160/28 [20/0] via 192.168.240.2, 01:40:24
10.243.1.112/28 [20/0] via 192.168.240.2, 01:40:24
138.35.0.0/16 [1/0] via 192.168.10.1
138.35.128.0/24 [20/0] via 192.168.240.2, 01:40:24
151.162.0.0/32 is subnetted, 2 subnets
151.162.165.15 [1/0] via 200.85.45.97
151.162.165.91 [1/0] via 200.85.45.97
172.18.80.0 [1/0] via 10.10.1.1
180.182.0.0/16 [1/0] via 192.168.10.1
180.183.0.0/16 [1/0] via 192.168.10.1
181.32.0.0/16 [20/0] via 192.168.240.2, 00:53:12
B
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B

181.40.0.0/16 [20/0] via 192.168.240.2, 00:53:12
181.40.16.19/32 [1/0] via 200.85.45.97
181.40.16.57/32 [1/0] via 200.85.45.97
181.40.64.235/32 [1/0] via 200.85.45.97
181.40.65.16/32 [1/0] via 200.85.45.97
181.40.65.20/32 [1/0] via 200.85.45.97
181.40.65.24/32 [1/0] via 200.85.45.97
181.40.65.26/32 [1/0] via 200.85.45.97
181.40.65.27/32 [1/0] via 200.85.45.97
181.40.65.31/32 [1/0] via 200.85.45.97
181.40.65.35/32 [1/0] via 200.85.45.97
181.40.65.37/32 [1/0] via 200.85.45.97
181.40.65.38/32 [1/0] via 200.85.45.97
181.40.65.42/32 [1/0] via 200.85.45.97
181.40.65.46/32 [1/0] via 200.85.45.97
181.40.65.48/32 [1/0] via 200.85.45.97
181.40.65.49/32 [1/0] via 200.85.45.97
181.40.65.53/32 [1/0] via 200.85.45.97
181.40.65.57/32 [1/0] via 200.85.45.97
181.40.65.59/32 [1/0] via 200.85.45.97
181.40.81.34/32 [1/0] via 200.85.62.17
181.40.91.94/32 [1/0] via 200.85.45.97
181.40.116.66/32 [1/0] via 200.85.45.97
181.40.127.70/32 [1/0] via 200.85.45.97
181.42.0.0/16 [20/0] via 192.168.240.2, 01:40:24
181.42.23.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.24.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.45.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.46.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.60.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.80.192/27 [20/0] via 192.168.240.2, 00:53:12
181.42.80.224/27 [20/0] via 192.168.240.2, 00:53:12
181.42.90.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.93.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.94.0/25 [20/0] via 192.168.240.2, 00:53:12
181.42.94.128/25 [20/0] via 192.168.240.2, 00:53:12
181.42.96.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.97.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.98.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.101.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.102.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.103.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.104.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.105.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.106.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.107.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.108.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.109.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.110.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.111.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.112.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.113.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.114.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.115.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.116.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.117.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.119.0/25 [20/0] via 192.168.240.2, 00:53:12
181.42.119.128/25 [20/0] via 192.168.240.2, 00:53:12
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
S
S
B
B
B
B
B
B
B
B
B
B
B
181.42.120.0/24 [20/0] via 192.168.240.2, 00:53:12

181.42.122.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.123.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.125.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.161.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.200.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.242.0/24 [20/0] via 192.168.240.2, 00:53:12
181.42.250.0/28 [20/0] via 192.168.240.2, 00:53:12
181.42.250.16/28 [20/0] via 192.168.240.2, 00:53:12
181.42.252.0/28 [20/0] via 192.168.240.2, 00:53:12
181.42.252.16/28 [20/0] via 192.168.240.2, 01:40:24
181.44.45.0 [20/0] via 192.168.240.2, 00:53:12
181.44.60.0 [20/0] via 192.168.240.2, 00:53:12
181.44.90.0 [20/0] via 192.168.240.2, 00:53:12
181.44.100.0 [20/0] via 192.168.240.2, 00:53:12
181.44.103.0 [20/0] via 192.168.240.2, 00:53:12
181.44.106.0 [20/0] via 192.168.240.2, 00:53:12
181.44.107.0 [20/0] via 192.168.240.2, 00:53:12
181.44.108.0 [20/0] via 192.168.240.2, 00:53:12
181.44.110.0 [20/0] via 192.168.240.2, 00:53:12
181.45.0.0/16 [20/0] via 192.168.240.2, 01:40:24
181.45.46.0/24 [20/0] via 192.168.240.2, 00:53:12
181.45.80.0/27 [20/0] via 192.168.240.2, 00:53:12
181.45.80.224/27 [20/0] via 192.168.240.2, 00:53:12
181.45.94.0/25 [20/0] via 192.168.240.2, 00:53:12
181.45.94.128/25 [20/0] via 192.168.240.2, 00:53:12
181.45.233.10/32 [20/0] via 192.168.240.2, 00:53:12
181.45.233.11/32 [20/0] via 192.168.240.2, 00:53:12
181.46.0.0/16 [20/0] via 192.168.240.2, 01:40:24
181.46.1.11/32 [20/0] via 192.168.240.2, 00:53:12
181.102.0.0/16 [20/0] via 192.168.240.2, 01:40:24
181.102.1.10/32 [20/0] via 192.168.240.2, 00:53:12
181.142.0.0/16 [20/0] via 192.168.240.2, 00:53:12
181.142.252.0/28 [20/0] via 192.168.240.2, 01:40:24
183.55.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.56.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.57.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.59.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.61.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.62.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.70.0.0/16 [20/0] via 192.168.240.2, 01:40:24
183.159.0.0/16 [1/0] via 192.168.10.1
183.160.0.0/16 [1/0] via 192.168.10.1
183.183.2.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.3.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.4.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.5.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.6.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.7.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.8.36/32 [20/0] via 192.168.240.2, 00:53:12
183.183.8.64/27 [20/0] via 192.168.240.2, 00:53:12
183.183.8.96/28 [20/0] via 192.168.240.2, 00:53:12
183.183.8.252/30 [20/0] via 192.168.240.2, 00:53:12
183.183.10.0/24 [20/0] via 192.168.240.2, 00:53:12
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
B
S
S
S
S
S
S
S
C
L
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
S
183.183.11.0/24 [20/0] via 192.168.240.2, 00:53:12

183.183.12.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.100.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.101.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.102.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.103.0/24 [20/0] via 192.168.240.2, 00:53:43
183.183.104.0/24 [20/0] via 192.168.240.2, 00:53:12
183.183.105.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.106.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.107.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.108.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.109.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.110.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.111.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.112.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.113.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.114.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.115.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.118.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.119.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.120.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.121.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.122.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.123.0/24 [20/0] via 192.168.240.2, 01:40:25
183.183.133.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.134.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.135.0/24 [20/0] via 192.168.240.2, 00:53:13
183.183.137.0/24 [20/0] via 192.168.240.2, 00:53:44
183.183.150.0/24 [20/0] via 192.168.240.2, 00:53:44
190.128.128.144/30 [1/0] via 200.85.45.97
190.128.232.122/32 [1/0] via 200.85.62.17
192.168.0.1 [1/0] via 200.85.62.17
192.168.0.18 [1/0] via 200.85.62.17
192.168.0.20 [1/0] via 200.85.62.17
192.168.0.103 [1/0] via 200.85.62.17
192.168.0.222 [1/0] via 200.85.62.17
192.168.10.0/24 is directly connected, GigabitEthernet0/0
192.168.10.12/32 is directly connected, GigabitEthernet0/0
192.168.20.10 [1/0] via 192.168.10.1
192.168.40.63 [1/0] via 181.125.128.144
192.168.40.65 [1/0] via 201.217.17.182
192.168.40.66 [1/0] via 201.217.17.182
192.168.40.67 [1/0] via 201.217.17.182
192.168.40.68 [1/0] via 201.217.17.182
192.168.40.70 [1/0] via 201.217.17.182
192.168.40.71 [1/0] via 201.217.17.182
192.168.40.74 [1/0] via 201.217.17.182
192.168.40.75 [1/0] via 201.217.17.182
192.168.40.78 [1/0] via 201.217.17.182
192.168.40.81 [1/0] via 201.217.17.182
192.168.40.82 [1/0] via 201.217.17.182
192.168.40.84 [1/0] via 201.217.17.182
192.168.40.85 [1/0] via 201.217.17.182
192.168.50.2 [1/0] via 192.168.10.1
S
S
S
S
S
192.168.50.10 [1/0] via 192.168.10.1

192.168.50.11 [1/0] via 192.168.10.1
192.168.50.15 [1/0] via 192.168.10.1
192.168.50.50 [1/0] via 192.168.10.1
192.168.50.123 [1/0] via 192.168.10.1
S
192.168.55.15 [1/0] via 192.168.10.1
S
192.168.55.100 [1/0] via 192.168.10.1
S
192.168.80.33 [1/0] via 181.122.159.134
S
192.168.80.35 [1/0] via 181.122.159.134
S
192.168.80.37 [1/0] via 10.176.169.222
S
192.168.80.38 [1/0] via 181.120.252.177
S
192.168.108.254 [1/0] via 192.168.10.1
B
192.168.225.0/24 [20/0] via 192.168.240.2, 00:53:14
C
192.168.240.0/30 is directly connected, Serial0/0/0:0
L
192.168.240.1/32 is directly connected, Serial0/0/0:0
S
192.168.254.1 [1/0] via 192.168.10.1
C
200.85.45.96/30 is directly connected, GigabitEthernet0/1.434
L
C
L
S
200.108.136.101 [1/0] via 200.85.62.17
S
201.217.17.78 [1/0] via 200.85.62.17
S
201.222.53.218 [1/0] via 200.85.62.17
B
207.169.83.0/24 [20/0] via 192.168.240.2, 00:53:14
B
207.169.84.0 [20/0] via 192.168.240.2, 00:53:14
S
207.169.88.0/24 [1/0] via 192.168.10.1
Ro_Paresa-VPN2911#

VPN

Uploaded by

Copyright:

Available Formats

VPN

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

VPN

Uploaded by

Copyright:

Available Formats

ter len 0

aaa accounting commands 10 default start-stop group tacacs+

23041830 168014F1 64BC1EB1 6FB696C9 5A8682E9 82A98133 B5548730

efiorini secret 5 $1$..Nc$CF4nGtplaMnR5RZXNCfMk1

username admin password 7 013E090A5F0408082E

match access-group name Video

dns 10.24.89.60 10.24.88.28

crypto map PUNTOPY 9 ipsec-isakmp

ip address 192.168.10.12 255.255.255.0

ip route 181.40.65.37 255.255.255.255 200.85.45.97 name maps.google.com

permit 192.168.10.0 0.0.0.255

permit ip host 181.45.1.107 192.168.40.56 0.0.0.7

permit ip any 181.45.0.0 0.0.255.255

permit ip any host 181.40.65.48

permit ip host 10.24.88.43 host 10.10.12.2

snmp-server enable traps bgp

scheduler allocate 20000 1000

0.0.0.0/0 [1/0] via 200.85.45.97

181.40.0.0/16 is variably subnetted, 24 subnets, 2 masks

181.42.120.0/24 [20/0] via 192.168.240.2, 00:53:12

183.183.11.0/24 [20/0] via 192.168.240.2, 00:53:12

192.168.50.10 [1/0] via 192.168.10.1

You might also like