hostname asa domain-name aktino.com enable password ATrjZZH1PS.2rvs7 encrypted passwd 3WQGH6138oflyQbe encrypted names ! interface Ethernet0/0 switchport access vlan 2 ! interface Ethernet0/1 ! interface Ethernet0/2 ! interface Ethernet0/3 ! interface Ethernet0/4 ! interface Ethernet0/5 ! interface Ethernet0/6 ! interface Ethernet0/7 switchport access vlan 2 ! interface Vlan1 nameif inside security-level 100 ip address 10.50.50.1 255.255.255.0 ! interface Vlan2 nameif outside security-level 0 pppoe client vpdn group ATT ip address pppoe setroute ! boot system disk0:/asa823-k8.bin ftp mode passive clock timezone PST -8 clock summer-time PDT recurring dns server-group DefaultDNS domain-name aktino.com same-security-traffic permit intra-interface access-list nonat extended permit ip 10.50.50.0 255.255.255.0 172.18.0.0 255.255.240.0 access-list nonat extended permit ip 10.50.50.0 255.255.255.0 10.10.8.0 255.255.252.0 access-list nonat extended permit ip 10.50.50.0 255.255.255.0 192.168.36.0 255.255.255.0 access-list nonat extended permit ip 10.50.50.0 255.255.255.0 172.16.0.0 255.255.240.0 access-list nonat extended permit ip 10.50.50.0 255.255.255.0 192.168.96.0 255.255.248.0 access-list crypto_acl_10 extended permit ip 10.50.50.0 255.255.255.0 192.168.36.0 255.255.255.0 access-list crypto_acl_10 extended permit ip 10.50.50.0 255.255.255.0 172.18.0.0 255.255.240.0 access-list crypto_acl_10 extended permit ip 10.50.50.0 255.255.255.0 10.10.8.0 255.255.252.0 access-list crypto_acl_10 extended permit ip 10.50.50.0 255.255.255.0 172.16.0.0 255.255.240.0 access-list crypto_acl_10 extended permit ip 10.50.50.0 255.255.255.0 192.168.96.0 255.255.248.0 pager lines 24 logging enable logging timestamp logging buffer-size 16384 logging asdm-buffer-size 500 logging monitor notifications logging buffered warnings logging trap notifications logging history alerts logging asdm warnings logging facility 16 mtu inside 1500 mtu outside 1500 no failover icmp unreachable rate-limit 1 burst-size 1 asdm image disk0:/asdm-633.bin asdm location 10.10.10.1 255.255.255.255 inside asdm location 10.10.10.2 255.255.255.255 inside asdm location 10.10.10.6 255.255.255.255 inside asdm location 10.10.10.7 255.255.255.255 inside asdm location 10.10.10.17 255.255.255.255 inside asdm location 10.10.10.19 255.255.255.255 inside asdm location 10.10.10.29 255.255.255.255 inside asdm location 10.10.10.50 255.255.255.255 inside asdm location 10.10.10.52 255.255.255.255 inside asdm location 10.10.10.54 255.255.255.255 inside asdm location 10.10.10.230 255.255.255.255 inside asdm location 10.10.10.231 255.255.255.255 inside asdm location 10.10.10.232 255.255.255.255 inside asdm location 10.10.10.233 255.255.255.255 inside asdm location 10.10.85.0 255.255.255.0 inside asdm location 172.16.0.0 255.255.0.0 inside asdm location 172.17.0.0 255.255.0.0 inside asdm location 192.168.1.0 255.255.255.0 inside asdm location 192.168.2.0 255.255.255.0 inside asdm location 10.10.10.56 255.255.255.255 inside asdm location 10.10.10.71 255.255.255.255 inside asdm location 10.10.81.0 255.255.255.0 inside asdm location 10.10.80.0 255.255.255.0 inside asdm location 10.10.87.0 255.255.255.0 inside asdm location 192.168.110.0 255.255.255.0 inside asdm location 192.168.201.0 255.255.255.0 inside asdm location 192.168.202.0 255.255.255.0 inside asdm location 192.168.203.0 255.255.255.0 inside asdm location 192.168.204.0 255.255.255.0 inside asdm location 10.10.10.136 255.255.255.255 inside asdm location 10.10.10.192 255.255.255.192 outside asdm location 10.10.10.64 255.255.255.255 inside asdm location 10.10.10.79 255.255.255.255 inside asdm location 10.10.10.49 255.255.255.255 inside asdm location 192.168.22.0 255.255.255.0 inside asdm location 10.10.10.45 255.255.255.255 inside asdm location 10.10.10.73 255.255.255.255 inside asdm location 10.10.10.80 255.255.255.255 inside asdm location 10.10.10.12 255.255.255.255 inside asdm location 10.10.0.0 255.255.0.0 inside asdm location 172.22.0.0 255.255.0.0 inside asdm location 64.254.232.224 255.255.255.224 outside asdm location 69.70.4.112 255.255.255.248 outside asdm location 172.18.0.0 255.255.240.0 outside asdm location 10.10.10.3 255.255.255.255 inside asdm location 10.10.10.80 255.255.255.240 outside asdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 0 access-list nonat nat (inside) 1 0.0.0.0 0.0.0.0 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00 timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00 timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute timeout tcp-proxy-reassembly 0:01:00 dynamic-access-policy-record DfltAccessPolicy aaa authentication ssh console LOCAL http server enable http 64.254.232.224 255.255.255.224 outside http 10.10.8.0 255.255.252.0 inside no snmp-server location no snmp-server contact snmp-server community public snmp-server enable traps snmp authentication linkup linkdown coldstart snmp-server enable traps syslog crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac crypto ipsec transform-set ESP-AES-MD5 esp-aes esp-md5-hmac crypto ipsec transform-set ESP-AES-SHA esp-aes esp-sha-hmac crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac crypto ipsec security-association lifetime seconds 28800 crypto ipsec security-association lifetime kilobytes 4608000 crypto map outside_map 10 match address crypto_acl_10 crypto map outside_map 10 set peer 206.55.85.210 crypto map outside_map 10 set transform-set ESP-AES-128-SHA crypto map outside_map interface outside crypto isakmp enable outside crypto isakmp policy 20 authentication rsa-sig encryption 3des hash md5 group 2 lifetime 86400 crypto isakmp policy 40 authentication pre-share encryption 3des hash md5 group 2 lifetime 86400 crypto isakmp policy 50 authentication pre-share encryption 3des hash md5 group 2 lifetime 28800 crypto isakmp policy 60 authentication pre-share encryption des hash sha group 1 lifetime 3600 crypto isakmp nat-traversal 25 telnet 10.10.8.0 255.255.252.0 inside telnet timeout 5 ssh 10.10.8.0 255.255.252.0 inside ssh 64.254.232.224 255.255.255.224 outside ssh 69.70.4.112 255.255.255.248 outside ssh timeout 30 console timeout 0 management-access inside vpdn group ATT request dialout pppoe vpdn group ATT localname positronaccess@att.net vpdn group ATT ppp authentication pap vpdn username positronaccess@att.net password aqk623 store-local dhcpd auto_config outside ! dhcpd address 10.50.50.100-10.50.50.130 inside dhcpd dns 172.18.0.8 8.8.8.8 interface inside dhcpd domain positron.ca interface inside dhcpd enable inside ! threat-detection basic-threat threat-detection statistics access-list no threat-detection statistics tcp-intercept ntp server 66.187.233.4 source outside webvpn username cdmscw password E06YXFMZ6GqLC9FT encrypted privilege 15 tunnel-group 206.55.85.210 type ipsec-l2l tunnel-group 206.55.85.210 ipsec-attributes pre-shared-key 2u#oQ4Tpx1&t ! class-map inspection_default match default-inspection-traffic ! ! policy-map type inspect dns preset_dns_map parameters message-length maximum 512 policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 h225 inspect h323 ras inspect http inspect rsh inspect rtsp inspect sip inspect skinny inspect sqlnet inspect tftp inspect ip-options ! service-policy global_policy global prompt hostname context call-home profile CiscoTAC-1 no active destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService destination address email callhome@cisco.com destination transport-method http subscribe-to-alert-group diagnostic subscribe-to-alert-group environment subscribe-to-alert-group inventory periodic monthly subscribe-to-alert-group configuration periodic monthly subscribe-to-alert-group telemetry periodic daily Cryptochecksum:c977a3d2f059238acb366893fab65091 : end