Cisco 850 example

Example with NAT, RIP and ACL



no service pad
service tcp-keepalives-in
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
service compress-config
!
hostname EXAMPLE
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
logging buffered 4096
no logging console
no logging monitor
enable secret 5 $1$Ozot$UGYGbhkdhuhuohjss
!
aaa new-model
!
!
!
!
aaa session-id common
memory-size iomem 20
clock timezone EET 2
clock summer-time EEST recurring last Sun Mar 2:00 last Sun Oct 2:00
!
!
dot11 syslog
no ip source-route
!
!
!
ip dhcp pool local_pool
network 192.168.2.0 255.255.255.0
domain-name EXAMPLE
dns-server 212.59.64.13 212.59.68.66
default-router 192.168.2.254
!
!
ip cef
ip domain name EXAMPLE.lt
ip name-server 212.59.64.13
ip name-server 212.59.68.66
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
memory reserve critical 512
vtp mode transparent
username example privilege 0 secret 5 $1$M3LR$/EFuihjY6HHKDjskjlk;c
!
!
!
archive
log config
hidekeys
!
!
!
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
ip address dhcp
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface Dot11Radio0
no ip address
shutdown
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Vlan1
ip address 212.59.67.30 255.255.255.248 secondary
ip address 192.168.2.254 255.255.255.0 secondary
ip address 212.59.77.54 255.255.255.248
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
!
router rip
version 2
redistribute connected
passive-interface default
no passive-interface FastEthernet4
network 212.59.75.0
network 212.59.76.0
network 212.59.77.0
distribute-list prefix RIPOUT out
no auto-summary
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 212.59.75.254
ip route 0.0.0.0 0.0.0.0 dhcp
no ip http server
no ip http secure-server
!
!
ip nat translation timeout 300
ip nat translation max-entries 2048
ip nat inside source list 10 interface Vlan1 overload
!
!
ip prefix-list RIPOUT seq 5 permit 212.59.67.24/29
ip prefix-list RIPOUT seq 10 permit 212.59.77.48/29
logging source-interface FastEthernet4
logging 10.1.0.126
access-list 10 permit 192.168.2.0 0.0.0.255
access-list 20 permit 84.250.0.2
access-list 20 permit 212.59.65.8
access-list 20 permit 212.59.75.0 0.0.0.31
access-list 20 deny any
!
!
!
!
snmp-server community monitor RO
!
control-plane
!
!
line con 0
no modem enable
stopbits 1
line aux 0
line vty 0 4
session-timeout 60
access-class 20 in
exec-timeout 180 0
transport input ssh
transport output ssh
!
scheduler max-task-time 5000
sntp server 212.59.65.1
sntp source-interface FastEthernet4
end