Текст cisco-like конфигурации для устройства GW1

!

version 12.4

no service password-encryption

!

crypto ipsec df-bit copy

crypto isakmp identity dn

crypto isakmp keepalive 10

username cscons privilege 15 password 0 csp

hostname GW1

enable password csp

ip domain name s-terra

!

crypto isakmp policy 31

 hash md5

 encr des

 group 2

!

crypto ipsec transform-set CSM_TS_1 esp-des esp-md5-hmac

!

ip access-list extended CSM_IPSEC_ACL_1

 permit ip 192.168.1.0 0.0.0.255 192.168.0.0 0.0.0.255

!

crypto map CSM_CME_FastEthernet0/0 2 ipsec-isakmp

 match address CSM_IPSEC_ACL_1

 set transform-set CSM_TS_1

 set peer 192.168.13.78

 reverse-route

!

interface FastEthernet0/0

 ip address 192.168.13.112 255.255.255.0

 crypto map CSM_CME_FastEthernet0/0

!

interface FastEthernet0/1

 ip address 192.168.1.5 255.255.255.0

!

ip route 0.0.0.0 0.0.0.0 192.168.13.15

!

crypto pki trustpoint s-terra_technological_trustpoint

 revocation-check none

crypto pki certificate chain s-terra_technological_trustpoint

certificate 50DB2211454963AC4DA770AC855D607E

3082028A30820239A003020102021050DB2211454963AC4DA770AC855D607E30

F6A3D58BA218B621D2B6F403477F

 

quit

!

end