service timestamps debug datetime
service timestamps log datetime
service password-encryption
!
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret ipexperthome
no aaa new-model
!
!
!
ip cef
ip dhcp excluded-address 192.168.1.1 192.168.1.10
!
ip dhcp pool DHCP-Pool
   import all
   network 192.168.1.0 255.255.255.0
   option 150 ip 10.10.210.10
   default-router 192.168.1.1
   dns-server 4.2.2.2
   domain-name proctorlabs.com
   lease 8
!
!
ip inspect name CBAC-FW tcp timeout 3600
ip inspect name CBAC-FW udp timeout 3600
ip inspect name CBAC-FW http java-list 1 timeout 3600
ip inspect name CBAC-FW https timeout 3600
ip inspect name CBAC-FW icmp
ip inspect name CBAC-FW ddns-v3
ip inspect name CBAC-FW smtp
ip inspect name CBAC-FW pop3
ip inspect name CBAC-FW pop3s
ip inspect name CBAC-FW imap
ip inspect name CBAC-FW ftps
ip inspect name CBAC-FW ntp
ip inspect name CBAC-FW ftp timeout 3600
!
!
crypto isakmp policy 10
 encr 3des
 authentication pre-share
 group 2
crypto isakmp key proctorvoice address 74.126.20.247
!
!
!
crypto ipsec client ezvpn IPx-Voice-vRack
 connect manual
 group vpodgroup key proctorvoice
 mode client
 peer 74.126.20.247
!
!
!
interface FastEthernet0/0
 description (Outside Public Interface)
 ip address dhcp
 ip access-group FW-IN in
 no ip unreachables
 ip nat outside
 ip inspect CBAC-FW out
 no cdp enable
 duplex auto
 speed auto
 no shut
 crypto ipsec client ezvpn IPx-Voice-vRack
!
interface FastEthernet0/1
 description (Inside Private Interface)
 ip address 192.168.10.1 255.255.255.0
 ip nat inside
 crypto ipsec client ezvpn IPx-Voice-vRack inside
 duplex auto
 speed auto
 no shut
!
!
ip route 0.0.0.0 0.0.0.0 dhcp
!
!
no ip http server
ip nat inside source list 101 interface f0/0 overload
!
ip access-list extended FW-IN
 permit udp any any eq bootpc
 deny   ip 10.0.0.0 0.255.255.255 any log
 deny   ip 172.16.0.0 0.15.255.255 any log
 deny   ip 192.168.0.0 0.0.255.255 any log
 deny   ip 224.0.0.0 15.255.255.255 any log
 deny   ip host 0.0.0.0 any log
 deny   ip host 255.255.255.255 any log
 deny   ip 169.254.0.0 0.0.255.255 any log
 deny   ip 127.0.0.0 0.255.255.255 any log
 permit tcp any any eq ssh
 permit esp host 74.126.20.247 any
 permit esp host 12.159.40.185 any
 permit udp host 74.126.20.247 any eq isakmp
 permit udp host 12.159.40.185 any eq isakmp
 permit udp host 74.126.20.247 any eq non500-isakmp
 permit udp host 12.159.40.185 any eq non500-isakmp
 deny   ip any any log
!
access-list 1 permit any
access-list 101 deny ip 192.168.0.0 0.0.255.255 10.10.0.0 0.0.255.255
access-list 101 permit ip 192.168.0.0 0.0.255.255 any
!
!
!
line con 0
line aux 0
line vty 0 15
 password ipexperthome
 privi level 15
 exec-timeout 30 0
 logging synchronous
 transport input telnet ssh
!
ntp server time.apple.com

end
wr


crypto ipsec client ezvpn connect


crypto ipsec client ezvpn xauth