有高手在吗 麻烦看下这个配置VPN有问题吗?CISCO1801#sh run: g! V$ b( M4 \4 I
Building configuration...2 j8 [5 r& w/ }) |7 U
/ L: M/ e3 [! }2 J; q$ | cCurrent configuration : 3175 bytes& w; |" x/ l" U$ T& ^
!
7 ^( i5 F% @ }- A i X8 i* sversion 12.4
+ C& {* M1 y/ H$ |( T4 |2 \6 qservice timestamps debug datetime msec$ r! v, V$ D4 u5 Q; `
service timestamps log datetime msec7 m) W" K+ h2 ]$ T& e+ A
no service password-encryption
% K( B8 Z8 f) V) ^6 S z5 F, D!3 J. z( Q& z) y* N9 s0 p
hostname CISCO1801; H6 o" j! [' Y# N8 o
!
& H) _) ]/ p! M- Z" q" Hboot-start-marker* m6 g, ^6 H2 j9 o7 B
boot system flash c180x-adventerprisek9-mz.124-24.T4.bin
% J0 m' U1 B- t! u$ J) v$ G! E& iboot-end-marker
$ V8 i& W0 o C9 s!
3 I8 }5 y- ?# [2 J# q, ^7 K/ flogging message-counter syslog8 f; N7 K7 R* ^0 R+ j% A
logging buffered 51200 warnings% a1 T6 |, ~3 f+ s
enable secret 5 $1$FQTK$SEZmlKi2re3kr0/GxsjSg1$ s" P0 R5 z) W8 a( B6 v" ^& Q2 C
!
k) R5 E- J \4 \3 S* Ono aaa new-model( p9 \4 Q+ f3 G# x( o9 |
!
6 B0 E: `: a' ?!8 @- ^0 @$ g3 N4 @& p# k1 I
dot11 syslog' [: P; w; d6 K7 r
ip source-route
6 P( \# ~9 e2 x/ `) r' @2 p6 \ B/ K! G* ]0 ^5 W7 y H) W: W
!4 e8 V" V! V' q
!
* i7 u. { F( A/ X! h!- D/ c2 q% f' A$ W$ _! u% E. f
ip cef8 l; _+ ~$ G0 v# ~# |5 H
no ip domain lookup9 Q5 l0 n* d3 ]7 b5 j7 Z
ip domain name yourdomain.com4 J, O) M+ V9 S, b5 C0 v4 e% }
no ipv6 cef
1 `2 @0 U( d% M s) @3 ?8 _9 G8 Z!
0 D0 _- S% p( l, P5 ?" y2 kmultilink bundle-name authenticated
4 U" n% r6 k9 \8 S' n! z!
3 o4 q% p# g, z; ]+ Bvpdn enable
7 Q$ E" g# s: x) n8 b. x!2 G5 W2 K4 k. n/ a: S
vpdn-group office
( q7 Q2 l: {, V+ n3 ~& b: {# M request-dialin# D; n! G. t# l- k, g# j" Z7 w
protocol pppoe
; e- L" ~& N% ~- p!0 g( y! X% [2 X B9 K7 v9 c1 p2 {
!
" J; S- l* e. Q: E+ d, H!( {0 V: ^% j3 J1 A- \" {- o
username admin privilege 15 password 0 shengbao
. ~, s2 b' B$ p!
" T2 t$ V; O, `4 S$ D: w" P0 i0 V!4 M& u* q! ?! f9 \; {
crypto isakmp policy 10" ]( C# a5 K2 P2 k1 @4 U: A' W* v
encr 3des
# g8 V3 j% m8 U authentication pre-share
2 i0 ~1 r8 z, b7 T x1 p group 2; q; t% r3 _5 \9 Q) |
!
% n" A: ]! R# ~; y8 o* b# Jcrypto isakmp policy 30& B# p9 x9 I9 R7 X
encr 3des
; W8 ~- G5 q2 d0 a9 I6 n9 K5 ` hash md5
- E( ?3 Z0 H4 [& D authentication pre-share
* J- E7 `0 x# v7 V8 w7 ]- x group 2( E8 y0 c) d. \8 [
crypto isakmp key 56156195 address 121.227.225.239/ [" f9 W& f0 V( T7 `. D; `/ I
crypto isakmp keepalive 30
; D7 T1 @$ F+ c, X- H7 B% g9 E!% I% h; i# A+ D% z T8 Q$ M
!
3 D5 ?, h& Q0 acrypto ipsec transform-set VPNSET esp-3des esp-sha-hmac + l5 c3 r1 Z, i- d# Q: x+ N9 `: B
!* e) E. I! I8 @
crypto map myipsec 1 ipsec-isakmp , Z$ Q j/ B n4 l( G
set peer 121.227.225.2390 A7 Q: z% C5 S* ]( c8 \
set security-association lifetime seconds 86400
, \/ r+ |0 X$ M; h set transform-set VPNSET J8 t* d& L) C5 ]4 G. f7 P
set pfs group2
9 [6 U2 y9 J8 S& B match address 111
* I7 U& ?7 Q+ |, O* g!4 z# e. @; p/ Y0 X0 e; s) R3 ]
archive4 l" ~) S e6 `
log config
& U; z" G+ K j2 b) I0 \' Q! W hidekeys7 i7 ^' U. `$ Q) g& |- @9 E' G
!
5 v* c4 {$ |3 F' D8 w, Q! U4 f, ~. c!) v3 A; ^ W9 E: a$ ?
!
7 g! t# F2 ^ w!
( M* N0 y! h2 g8 g/ i( J* l!
" b' B1 A E5 xinterface ATM0
( \4 C* u9 [3 D3 l/ J+ f* r no ip address- P" R, `( @, Y z$ z1 k
shutdown
6 R9 z/ a0 P8 q* J: z no atm ilmi-keepalive
6 Q* P. x4 {' W9 p% z* G!: I+ ?( y1 g5 {( L! V ?0 W+ n
interface BRI0
( V5 ?4 l$ p: j0 c- q no ip address1 g8 R X$ O1 a: R8 U
encapsulation hdlc& _5 C" m& R! B, }* v- _" u0 f
shutdown
# u' f& V. H; H3 a!; q. H n# m7 ^" |4 w1 _$ L
interface FastEthernet0; S; S' }: X, ]4 u$ A
no ip address
, ?5 V m, e8 ?# X duplex auto% i# j1 u1 m: s# G+ j: r
speed auto& O4 T+ o( A! m3 o4 F' U! Z7 s
pppoe enable group global5 S& n+ h! X+ q Y6 m, j
pppoe-client dial-pool-number 1+ x$ w" J( V2 Z, `* f$ r" H1 C
crypto map myipsec
, [) ~9 m9 i7 w' [9 E!
: k2 @" ^) T! I5 S* sinterface FastEthernet1, c% F% _8 V1 ~: v0 R+ F
!
- ~. G0 Z$ Y! m# kinterface FastEthernet2
8 _# h) W& A$ L% _) l!4 n6 S! e3 I J0 i. s
interface FastEthernet3
9 p, A; ]2 X7 m1 L8 O!% f- Q4 e/ p5 h) z8 J
interface FastEthernet4
4 D2 k6 y* o( u0 o2 s1 g!* r. ]8 n9 J: X3 I& k
interface FastEthernet5% i- H$ g* S# u! q
!
+ q/ F) }9 k& c+ l* _1 Dinterface FastEthernet6" d* [8 h @ k; l
!! Q, Q& J/ s+ e+ s8 h) M
interface FastEthernet7) P# L* r ]3 U- _0 D1 r
!) s/ G0 X1 E i3 f# w6 s, Q
interface FastEthernet8$ H Y) F" X4 m1 P1 [
!" f% o7 j) k" k* ~# _: r
interface Vlan1
, c, z8 f) @. S; f6 } ip address 192.168.0.2 255.255.255.0) k+ D$ V+ U4 T/ n" \
ip nat inside
) m3 h0 J/ x- ~0 f: [ ip virtual-reassembly9 n& Y6 ]) j1 ~3 ], W4 M d
ip tcp adjust-mss 1452' x$ V! ]8 W2 Q9 b! c* H8 g5 R. _
!; l; m( P8 a8 o0 m9 n
interface Dialer1/ [3 q0 N7 a4 f% g
ip address negotiated* ]" U6 N/ O: [* I- w' m6 O: B
ip mtu 1492- n, ~3 K K. j: G9 Z9 ?4 {
ip nat outside
, [/ B4 {, S( n: b ip virtual-reassembly
0 t0 W3 {! e+ } encapsulation ppp
4 w$ @0 L/ h" h. w dialer pool 1& u! Z$ _" |6 v# |
dialer-group 1
6 B6 H- Q1 P& Z6 P6 P! F. E6 \ no cdp enable
4 g( v% s- V i7 x5 q2 ^ I ppp authentication pap callin9 ^' B3 C$ [% i( p+ S/ [
ppp pap sent-username ad51949701 password 0 wJ5GrLTN* h6 s' F! p' w3 P6 c7 ~8 H, E
!& o/ L; ~! E* N- I4 |
ip forward-protocol nd
" O3 k1 e' G/ {% P) u/ T% Uip route 0.0.0.0 0.0.0.0 Dialer1* }- u$ \3 i( ]
ip http server
2 Z7 n8 I2 _+ ~$ w6 ]& g+ L# |ip http access-class 24 V8 H9 P+ D9 H! E; T9 `: v
ip http authentication local
7 j3 n9 {4 y( J/ H, Hno ip http secure-server* `% K+ A$ i, Y) ]0 g8 k
ip http timeout-policy idle 60 life 86400 requests 10000 `7 i" {" f* V+ e, I5 ~. `& Q
!
! ]" T/ f5 c2 @, y, z!
1 }" Y( b: |+ L' K# tip nat inside source list 1 interface Dialer1 overload
* ]- m) R" F5 a F! 3 |& O6 T5 T2 a/ _* V1 g8 i
access-list 1 permit 192.168.0.39
8 t- Z& r. v) h" r. {* C: Maccess-list 1 permit 192.168.0.248: Y; r$ D1 j4 p# p& y
access-list 1 permit 192.168.0.249/ i& x2 V) {" Q
access-list 1 permit 192.168.0.250/ T6 V2 t3 K! g5 L6 ]" z7 l2 r
access-list 1 permit 192.168.0.251
3 P' e' {* W5 H+ Baccess-list 1 permit 192.168.0.252- b! I- G4 D! R5 }6 t0 Q# f
access-list 1 permit 192.168.0.253: f# s0 O/ H2 ?; e/ T
access-list 1 permit 192.168.0.254
) i) r( l; ~& M# {2 h" taccess-list 1 permit 192.168.0.245
" {& P' P; F& q5 E n, daccess-list 1 permit 192.168.0.246' l1 M6 b9 @1 K; ^/ U4 I
access-list 1 permit 192.168.0.2476 [( r; A+ N$ X* Y4 l' v8 Z l \* n
access-list 1 permit 192.168.0.200
% K9 T$ N, P- R" jaccess-list 1 permit 192.168.0.190" m7 p0 M: Y/ l0 T
access-list 1 permit 192.168.0.144) k* H5 Y7 ]# y B1 s- N! K! _! z
access-list 1 permit 192.168.0.146
" E7 Z" I3 i3 Oaccess-list 1 permit 192.168.0.1509 V# D+ F$ R: z3 ~1 R' W% ?+ J
access-list 1 deny any6 X) U+ e* t1 w3 E; T
access-list 111 permit ip 192.168.0.0 0.0.0.255 192.168.9.0 0.0.0.255) I+ h4 l2 N0 V+ K
no cdp run! T% k: Z) J( z) ^) a. N3 Z+ c7 u
1 O& X& @2 d7 f1 V+ b2 }; t% F' i* y!
% Y; x, l" Q X% ^9 f5 M!0 g5 w' s8 x0 b# ]* c( i, a m
!
, D- n, E' {3 ]) `, s$ W; p!& l8 M: M V6 b
!" k$ K3 B+ Y5 L& d
!( F2 K9 {' k" f5 G4 m! h9 E: F
control-plane
3 d/ u+ f& { r, c# c!
{! R1 s( Y1 m9 o& ]. v! L7 ]1 E!6 F2 {( R, n6 f! {! T. P: \
line con 0, v# z }* c2 z/ o3 F: M- g& g
login local
9 w8 \3 B! \. d1 x3 m" aline aux 0
" e. \& r3 k. e, Eline vty 0 46 _7 w u& O5 i; W7 A5 _( ]$ B
privilege level 15' p* r/ ?: |% [# K2 Y' e% n0 B
password SHSBCISCO1801
; Z: N' t1 j, M4 D3 U+ ^; G. x( | login" W5 ?( s; S4 ?8 l
transport input telnet5 m m s( D y8 B. k; I- |' W
line vty 5 15
, l; N1 Z- f {/ Z! s L access-class 2 in
) x9 R9 [6 _, m* U+ U! D: P2 t4 i privilege level 152 A2 w* y- l- s1 c& z- Y/ e* O
login local0 D+ ]" U7 {5 _2 }, {. m5 q6 a
transport input telnet
2 |5 T- J2 ?% p! K$ k! N!
% [! D$ k, t) Z9 v. gend0 P6 U& S& Q3 o j# N+ i; B# P
8 R0 W$ e: U" X* @$ `! N以上是总部的配置 但是RV042上面配置了 没用 很奇怪到底怎么回事 谁知道的 帮个忙啊 |
|
所有IT类厂商认证考试题库下载
【新盟教育】2023最新华为HCIA全套视频合集【网工基础全覆盖】---国sir公开课合集
【新盟教育】网工小白必看的!2023最新版华为认证HCIA Datacom零基础全套实战课
原创_超融合自动化运维工具cvTools
重量级~~30多套JAVA就业班全套 视频教程(请尽快下载,链接失效后不补)
链接已失效【超过几百G】EVE 国内和国外镜像 全有了 百度群分享
某linux大佬,积累多年的电子书(约300本)
乾颐堂现任明教教主Python完整版
乾颐堂 教主技术进化论 2018-2019年 最新31-50期合集视频(各种最新技术杂谈视频)
Python学习视频 0起点视频 入门到项目实战篇 Python3.5.2视频教程 共847集 能学102天
约21套Python视频合集 核心基础视频教程(共310G,已压缩)
最新20180811录制 IT爱好者-清风羽毛 - 网络安全IPSec VPN实验指南视频教程
最新20180807录制EVE开机自启动虚拟路由器并桥接物理网卡充当思科路由器
[复制链接]
