! ! ! ADTRAN, Inc. OS version R14.4.0.E ! Boot ROM version R11.5.0 ! Platform: NetVanta 3140, part number 4700340F2 ! Serial number CFG1679851 ! ! hostname "Charlevoix 3140" enable password encrypted 343f6e7ee12ecfabb30e817e0c91cf52c138 ! ! clock timezone -5-Eastern-Time ! ip subnet-zero ip classless ip default-gateway 208.103.134.154 ip routing ipv6 unicast-routing ! ! name-server 172.20.1.151 8.8.8.8 ! ! no auto-config auto-config authname adtran encrypted password 1711b76c3f7e908b6ad88c2154f6ae69bcb2 ! event-history on event-history priority debug no logging forwarding no logging email ! service password-encryption ! username "useradmin" password encrypted "2129e8f116db274a77e862b5796c652c3381" ! ! ip firewall no ip firewall alg msn no ip firewall alg mszone no ip firewall alg h323 ! ! ! ! ! ! ! ! ! no dot11ap access-point-control ! packet-capture Capture standard export tftp 67.58.79.8 export flash match list test shutdown ! ! ! ! ! ! ip dhcp excluded-address 172.28.0.1 172.28.0.30 ! ip dhcp pool "172.28.0.0" network 172.28.0.0 255.255.0.0 dns-server 172.20.1.151 208.103.143.195 208.103.128.105 172.20.1.152 default-router 172.28.0.1 ! ! ! ! ! ! ! ip crypto ip crypto ffe ! crypto ike policy 100 initiate main respond anymode local-id address 208.103.134.155 peer 96.36.16.59 attribute 1 encryption 3des hash md5 authentication pre-share ! crypto ike remote-id address 96.36.16.59 preshared-key harborvpnpass ike-policy 100 crypto map VPN 10 no-mode-config no-xauth ! ! ip crypto ipsec transform-set esp-3des-esp-md5-hmac esp-3des esp-md5-hmac mode tunnel ! ip crypto map VPN 10 ipsec-ike description wayland match address ip VPN-10-vpn-selectors set peer 96.36.16.59 set transform-set esp-3des-esp-md5-hmac reverse-route ike-policy 100 ! ! ! ! interface gigabit-eth 0/1 description External WAN ip address 208.103.134.155 255.255.255.254 ip packet-capture Capture ip mtu 1500 ip access-policy Public ip crypto map VPN no rtp quality-monitoring no awcp no shutdown ! ! interface gigabit-eth 0/2 description Internal LAN ip address 172.28.0.1 255.255.0.0 ip mtu 1500 ip access-policy Private no rtp quality-monitoring no awcp no shutdown ! ! interface gigabit-eth 0/3 no ip address shutdown ! ! ! ! ! ! ! ip access-list standard wizard-ics remark Internet Connection Sharing permit any ! ! ip access-list extended self remark Traffic to NetVanta permit ip any any log ! ip access-list extended VPN-10-vpn-selectors permit ip 172.28.0.0 0.0.255.255 172.20.0.0 0.0.255.255 log permit ip 172.20.0.0 0.0.255.255 172.28.0.0 0.0.255.255 log permit ip 172.28.0.0 0.0.255.255 172.21.0.0 0.0.255.255 log permit ip 172.28.0.0 0.0.255.255 172.26.0.0 0.0.255.255 log permit ip 172.21.0.0 0.0.255.255 172.28.0.0 0.0.255.255 log permit ip 172.28.0.0 0.0.255.255 172.29.0.0 0.0.255.255 log permit ip 172.28.0.0 0.0.255.255 172.30.0.0 0.0.255.255 log permit ip 172.28.0.0 0.0.255.255 172.31.0.0 0.0.255.255 log ! ! ! ! ip policy-class Private allow list VPN-10-vpn-selectors stateless allow list self self nat source list wizard-ics interface gigabit-ethernet 0/1 overload ! ip policy-class Public allow reverse list VPN-10-vpn-selectors stateless ! ! ! ip route 0.0.0.0 0.0.0.0 208.103.134.154 ! no tftp server no tftp server overwrite http server http secure-server no snmp agent no ip ftp server no ip scp server no ip sntp server ! ! ! ! ! ! ! ! sip udp 5060 sip tcp 5060 no sip tls ! ! ! voice feature-mode network voice forward-mode network ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! line con 0 login ! line telnet 0 4 login password encrypted 3e36f3f2ee927c3c3fde47d0117a42bb7952 no shutdown line ssh 0 4 login local-userlist no shutdown ! ! ! ! ! end