Plantilla Router Mocoa

PONAL_MOCOA_COMANDO#sh run
Building configuration...
Current configuration : 19896 bytes

!
! No configuration change since last restart
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec localtime
service password-encryption
!
hostname PONAL_MOCOA_COMANDO
!
boot-start-marker
boot-end-marker
!
!
logging buffered 64000
enable secret 5 $1$s.cv$qjHYvnVq7a0f3zSicjXPy0
!
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication login LOCAL_POL local
aaa authorization console
aaa authorization exec default group tacacs+ if-authenticated
aaa authorization exec LOCAL_PON local
aaa authorization commands 1 default group tacacs+ local if-authenticated
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
!
!
!
!
!
aaa session-id common
clock timezone GMT -5 0
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
ip dhcp pool TELEFONIA
network 172.22.86.128 255.255.255.128
option 150 ip 10.90.16.2
default-router 172.22.86.254
dns-server 172.28.9.229 172.28.9.230
lease 0 23
!
!
!
ip flow-cache timeout active 1
no ip domain lookup
ip domain name telecom.esp
ip dhcp-server 172.22.86.254
ip cef
ipv6 unicast-routing
ipv6 dhcp pool LAN_TELEFONIA_IPV6
address prefix 2801:1B0:2:4001::/64
!
ipv6 dhcp pool LAN
dns-server 2801:1B0:0:26::F:1
dns-server 2801:1B0:0:26::F:A
!
ipv6 spd queue min-threshold 62
ipv6 spd queue max-threshold 63
ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
cts logging verbose
!
!
voice-card 0
dspfarm
dsp services dspfarm
!
!
voice call send-alert
voice rtp send-recv
!
voice service voip
allow-connections h323 to h323
allow-connections h323 to sip
allow-connections sip to h323
allow-connections sip to sip
redirect ip2ip
h323
emptycapability
h225 id-passthru
h225 connect-passthru
h245 passthru tcsnonstd-passthru
sip
early-offer forced
no call service stop
!
voice class codec 100
codec preference 1 g711ulaw
codec preference 2 g711alaw
codec preference 3 g729br8
codec preference 4 g729r8
!
voice class codec 200
codec preference 1 g711ulaw
codec preference 2 g711alaw
!
!
!
!
!
!
voice translation-rule 1
rule 1 /^9$[2-9]......$/ /\1/
rule 2 /^9$033.........$/ /\1/
rule 3 /^90[579]$........$/ /09\1/
rule 4 /^900[579]$.*$/ /009\1/
rule 5 /^9$1..$/ /\1/
!
rule 1 /^84201500$.*$/ /51534\1/
rule 2 /^842015..$.*$/ /51534\1/
!
rule 1 /^[2-8]$....$/ /84201500/
!
rule 1 reject /^9$033.........$/
!
!
voice translation-profile OUT
translate calling 3
translate called 1
!
voice translation-profile call_block
translate called 4
!
voice translation-profile callin
translate calling 3
!
voice translation-profile in
translate called 2
!
!
!
license udi pid CISCO2911/K9 sn FJC1906A097
license boot module c2900 technology-package uck9
!
!
username policia.nacional privilege 15 secret 5 $1$HT3I$TpYvRGdz5Nj.KXL8GzQ0c.
!
redundancy
!
!
!
!
no cdp run
!
track 10 ip sla 10 reachability
!
track 20 ip sla 20 reachability
!
ip ssh version 2
!
!
crypto isakmp policy 1
encr aes 256
authentication pre-share
group 2
lifetime 2000
crypto isakmp key P0L1C14 address 0.0.0.0
crypto isakmp keepalive 30 10 periodic
!
crypto ipsec security-association replay window-size 1024
!
crypto ipsec transform-set PONAL-IPSEC esp-aes 256 esp-sha-hmac
mode tunnel
!
crypto ipsec profile POLICIA
set transform-set PONAL-IPSEC
!
!
!
!
!
!
!
interface Loopback500
description GESTION_MOVISTAR_MAS
ip address 10.192.1.54 255.255.255.255
!
interface Loopback600
ip address 10.25.14.43 255.255.255.255
!
interface Tunnel10
description PONAL_CAN_PPAL
ip address 10.110.99.2 255.255.255.252
ip mtu 1476
ip tcp adjust-mss 1200
ipv6 address 2801:1B0:0:1C:10:110:99:1/127
ipv6 enable
tunnel source GigabitEthernet0/0.1397
tunnel destination 10.11.255.2
tunnel protection ipsec profile POLICIA
!
interface Tunnel20
description PONAL_CAN_BCKP
ip address 10.210.99.2 255.255.255.252
ip mtu 1476
ipv6 address 2801:1B0:0:1C:10:210:99:1/127
ipv6 enable
!
interface Tunnel100
description PONAL_CAN_BCK_PPAL
ip address 10.112.8.2 255.255.255.252
ip mtu 1476
!
interface Tunnel200
description PONAL_CAN_BCK_BCKP
ip address 10.212.8.2 255.255.255.252
ip mtu 1476
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
bandwidth 40960
no ip address
ip flow ingress
ip flow egress
ip nat outside
ip virtual-reassembly in
load-interval 30
duplex auto
speed auto
hold-queue 4096 in
!
interface GigabitEthernet0/0.1397
description CONEXION_WAN_PPAL
bandwidth 40960
encapsulation dot1Q 1397
ip address 10.11.255.218 255.255.255.252
no cdp enable
!
description CONEXION_TSIP
ip address 10.10.20.42 255.255.255.252
ip flow ingress
ip flow egress
no cdp enable
!
description CONEXION_LAN
ip address 172.26.86.241 255.255.255.0
ip helper-address 172.28.9.31
ip flow ingress
ip flow egress
ip nat inside
ip virtual-reassembly in
load-interval 30
duplex auto
speed auto
ipv6 address 2801:1B0:2:4000:172:26:86:241/64
ipv6 enable
ipv6 nd prefix default no-advertise
ipv6 nd prefix 2801:1B0:2:4000::/64 604800 10 no-autoconfig
ipv6 dhcp relay destination 2801:1B0:2:4000:172:26:86:3
h323-gateway voip interface
h323-gateway voip bind srcaddr 172.26.86.241
!
description Vlan Tesoreria
ip address 172.21.86.62 255.255.255.192
ipv6 address 2801:1B0:2:400C:172:21:86:241/64
ipv6 enable
ipv6 nd prefix 2801:1B0:2:400C::/64 604800 10 no-autoconfig
no cdp enable
!
description Vlan Gaula
ip address 172.22.86.126 255.255.255.128
ipv6 address 2801:1B0:A:2001:172:22:86:241/64
ipv6 enable
ipv6 nd prefix 2801:1B0:A:2001::/64 604800 10 no-autoconfig
no cdp enable
!
description Vlan Sanidad
ip address 172.21.186.126 255.255.255.128
ipv6 address 2801:1B0:13:2005:172:21:186:241/64
ipv6 enable
ipv6 nd prefix 2801:1B0:13:2005::/64 604800 10 no-autoconfig
no cdp enable
!
description LAN_TSIP
ip address 172.22.86.254 255.255.255.128
ipv6 address 2801:1B0:2:4001:172:22:86:241/64
ipv6 enable
ipv6 dhcp server LAN
no cdp enable
!
description Sijin
ip address 172.21.86.254 255.255.255.128
ipv6 address 2801:1B0:D:2002:172:21:86:241/64
ipv6 enable
ipv6 nd prefix 2801:1B0:D:2002::/64 604800 10 no-autoconfig
no cdp enable
!
bandwidth 15200
no ip address
ip flow ingress
ip flow egress
load-interval 30
duplex auto
speed auto
!
description CONEXION_WAN_BCKP
bandwidth 15200
ip address 10.33.6.138 255.255.255.252
ip flow ingress
ip flow egress
no cdp enable
!
!
router bgp 65001
bgp log-neighbor-changes
timers bgp 10 30
neighbor 10.110.99.1 remote-as 65525
neighbor 2801:1B0:0:1C:10:110:99:0 remote-as 65525
neighbor 2801:1B0:0:1C:10:210:99:0 remote-as 65525
!
address-family ipv4
network 172.21.86.0 mask 255.255.255.192
network 172.21.86.128 mask 255.255.255.128
network 172.21.186.0 mask 255.255.255.128
network 172.22.86.0 mask 255.255.255.128
network 172.26.86.0 mask 255.255.255.0
neighbor 10.110.99.1 activate
neighbor 10.110.99.1 weight 2000
no neighbor 2801:1B0:0:1C:10:110:99:0 activate
no neighbor 2801:1B0:0:1C:10:210:99:0 activate
exit-address-family
!
address-family ipv6
network 2801:1B0:2:4000::/64
network 2801:1B0:2:4001::/64
network 2801:1B0:2:400C::/64
network 2801:1B0:A:2001::/64
network 2801:1B0:D:2002::/64
network 2801:1B0:13:2005::/64
neighbor 2801:1B0:0:1C:10:110:99:0 activate
neighbor 2801:1B0:0:1C:10:210:99:0 activate
exit-address-family
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
ip flow-export source Loopback500
ip flow-export version 5
ip flow-export destination 172.28.9.140 9995
ip flow-export destination 172.22.65.50 2055
!
ip route 10.10.255.0 255.255.255.0 10.11.255.217 name RUTA_WAN_BCKP track 10
ip route 10.11.255.0 255.255.255.0 10.11.255.217 name RUTA_WAN_PPAL track 10
ip route 172.22.65.32 255.255.255.224 10.11.255.217 name MovistarMas track 20
ip route 192.168.250.250 255.255.255.255 10.11.255.217 name MovistarMas track 20
ip route 0.0.0.0 0.0.0.0 10.11.255.217 60 tag 120
ip route 0.0.0.0 0.0.0.0 10.33.6.137 80 tag 120
ip route 10.10.255.0 255.255.255.0 10.33.6.137 5 name RUTA_WAN_BCKP
ip route 10.11.255.0 255.255.255.0 10.33.6.137 5 name RUTA_WAN_PPAL
ip route 172.22.65.32 255.255.255.224 10.33.6.137 10 name MovistarMas
ip route 172.29.22.1 255.255.255.255 10.11.255.217 name tacacs_satelital
ip route 172.29.22.2 255.255.255.255 10.11.255.217 name tacacs_satelital
ip route 172.29.23.1 255.255.255.255 10.11.255.217 name tacacs
ip route 172.29.23.2 255.255.255.255 10.11.255.217 name tacacs
ip route 192.168.77.72 255.255.255.248 10.10.20.41 name RUTA_SBC_TSIP
ip route 192.168.250.250 255.255.255.255 10.33.6.137 10 name MovistarMas
ip tacacs source-interface Loopback500
!
ip access-list extended line-filter
permit ip 10.0.0.0 0.255.255.255 any
permit ip 172.16.0.0 0.15.255.255 any
permit ip 192.168.0.0 0.0.255.255 any
!
ip sla 10
icmp-echo 10.11.255.217 source-interface GigabitEthernet0/0.1397
timeout 6000
frequency 30
ip sla schedule 10 life forever start-time now
ip sla 20
icmp-echo 10.33.6.137 source-interface GigabitEthernet0/2.1118
timeout 6000
frequency 30
ip sla schedule 20 life forever start-time now
!
!
snmp-server community totem_ro RW 20
snmp-server community nvponal RW 99
tacacs-server host 172.29.23.1 key 7 0030402A577D5B285E02180A58
tacacs-server host 172.29.23.2 key 7 03300827552971621F2A4D4146
access-list 10 permit 172.19.0.0 0.0.0.255
access-list 20 remark Movistar_MAS
access-list 20 permit 192.168.250.250
access-list 20 remark Movistar_MAS
access-list 30 deny any
access-list 99 remark Monitoreo_PONAL
!
!
!
control-plane
!
!
!
!
!
!
mgcp behavior rsip-range tgcp-only
mgcp behavior comedia-role none
mgcp behavior comedia-check-media-src disable
mgcp behavior comedia-sdp-force disable
!
mgcp profile default
!
sccp local GigabitEthernet0/1.100
sccp ccm 10.90.16.2 identifier 1 version 7.0
sccp
!
sccp ccm group 1
associate ccm 1 priority 1
associate profile 1 register CFDEPUY
associate profile 2 register XCODEDEPUY
associate profile 3 register MTPDEPUY
switchover method immediate
switchback method immediate
!
!
!
dspfarm profile 2 transcode
description transcoder
associate application SCCP
shutdown
!
dspfarm profile 1 conference
description Conference
shutdown
!
dspfarm profile 3 mtp
codec g711ulaw
codec pass-through
maximum sessions software 100
shutdown
!
dial-peer voice 1 voip
description ****Entrada VoIP CUCM****
modem passthrough nse codec g711ulaw
session protocol sipv2
session target ipv4:10.90.16.2
incoming called-number .
voice-class codec 100
voice-class sip bind control source-interface GigabitEthernet0/1.100
voice-class sip bind media source-interface GigabitEthernet0/1.100
dtmf-relay cisco-rtp rtp-nte h245-signal h245-alphanumeric
fax rate disable
ip qos dscp ef signaling
!
description ****Entrada VoIP SBC Telefonica****
incoming called-number T
fax rate disable
!
description ****Extensiones CUCM****
preference 1
destination-pattern [12345678]....$
fax rate disable
no vad
!
preference 2
shutdown
fax rate disable
no vad
!
description ****SALIDA 1800****
translation-profile outgoing OUT
destination-pattern 901[89]00.......
session transport udp
dtmf-relay rtp-nte h245-alphanumeric sip-notify
!
description ****SALIDA LOCAL****
destination-pattern 9[2-9]......
voice-class sip early-offer forced
!
description ****SALIDA NACIONAL****
destination-pattern 909........
!
description ****SALIDA CELULAR****
call-block translation-profile incoming call_block
call-block disconnect-cause incoming call-reject
destination-pattern 9033[0-2]........
!
description ****SALIDA EMERGENCIA****
destination-pattern 911[129]
!
description ****SALIDA EMERGENCIA****
destination-pattern 912[235]
!
description ****SALIDA INTERNACIONAL****
destination-pattern 9#T
!
description **** AA ****
translation-profile incoming in
incoming called-number 842015..$
fax rate disable
!
preference 1
fax rate disable
no vad
!
!
gateway
timer receive-rtp 1200
!
sip-ua
no remote-party-id
retry invite 4
retry response 3
retry bye 2
retry cancel 2
retry register 3
timers connect 1000
timers register 150
connection-reuse
!
!
!
gatekeeper
shutdown
!
!
banner login ^C
AVISO: Esta accediendo a un sistema propiedad de TELEFONICA. Es necesario
disponer de autorizacion antes de utilizarlo y queda estrictamente limitado el uso
a lo
indicado en dicha autorizacion. Toda actividad realizada en el sistema esta siendo
registrada y monitorizada. Si no esta autorizado, debe finalizar su intento de
acceso
inmediatamente. El acceso no autorizado a este sistema o el uso indebido del mismo
esta prohibido y es contrario a la Politica Corporativa de Seguridad y a la
legislacion
vigente. Si continua, confirma que acepta lo indicado en este aviso.
^C
!
line con 0
password 7 120D001B170803096A
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
access-class line-filter in
exec-timeout 60 0
password 7 044F580A5C271C40581A51144206
transport input ssh
line vty 5
access-class line-filter in
exec-timeout 15 0
authorization exec LOCAL_PON
login authentication LOCAL_POL
transport input ssh
!
scheduler allocate 20000 1000
ntp server 10.11.255.2 prefer
ntp server 10.10.255.2 prefer
!
end

Plantilla Router Mocoa

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Plantilla Router Mocoa

Uploaded by

Copyright:

Available Formats

PONAL_MOCOA_COMANDO#sh run

Current configuration : 19896 bytes

You might also like