Cisco Systems OL-4387-02 manual Appendix A SSG Configuration Example

Appendix A SSG Configuration Example

interface ATM8/0/1 no ip address shutdown

no atm ilmi-keepalive

!

interface ATM8/0/2 no ip address shutdown

no atm ilmi-keepalive

!

interface ATM8/0/3 no ip address shutdown

no atm ilmi-keepalive

!

interface Virtual-Template1 ip unnumbered Loopback1

peer default ip address pool SSG-POOL

pppauthentication pap chap ppp ipcp address accept

!

ip local pool SSG-POOL 10.60.1.1 10.60.1.100 ip classless

ip route 0.0.0.0 0.0.0.0 192.168.2.1

ip route 10.80.1.1 255.255.0.0 11.1.1.51 no ip http server

!

!

ip radius source-interface FastEthernet0/0/0

!

logging trap debugging logging facility local6 logging 192.168.2.50

access-list 101 permit ip 10.0.0.0 0.255.255.255 172.25.0.0 0.0.255.255 access-list 102 permit ip host 192.168.2.50 any

access-list 102 permit ip any host 192.168.2.50 access-list 103 permit ip host 10.60.1.2 any access-list 104 permit tcp any any

access-list 105 permit ip 10.60.1.0 0.0.0.255 any arp 10.27.1.3 3434.3434.3434 ARPA

snmp-server community public RW

snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart snmp-server enable traps tty

snmp-server enable traps alarms

!

radius-server host 192.168.2.62 auth-port 1812 acct-port 1813 key cisco radius-server retransmit 5

radius-server timeout 15 radius-server attribute nas-port format d radius-server key cisco

radius-server authorization permit missing Service-Type radius-server vsa send accounting

radius-server vsa send authentication alias exec cpu show proc cpu history

alias exec dcopy copy running-config disk0:ssg-c10k.txt

alias exec zcopy copy running-config tftp://192.168.2.50/rohit/ssg-c10k.txt

!

line con 0 exec-timeout 0 0