version 12.4
service password-encryption
!
hostname UA00X-R01
!
boot-start-marker
boot-end-marker
!
enable secret this_secret
!
aaa new-model
!
aaa session-id common
clock timezone EET 2
clock summer-time EEST recurring last Sun Mar 2:00 last Sun Oct 2:00
ip cef
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
no ip domain lookup
ip domain name example.com
!
username po_user secret user_secret
!
ip ssh time-out 60
ip ssh authentication-retries 2
ip ssh source-interface FastEthernet0/0
ip ssh version 2
!
interface ATM0/0
description ISP Ukrtelecom ATM Interface
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
pvc 1/40
encapsulation aal5snap
pppoe-client dial-pool-number 1
!
!
interface FastEthernet0/0
description Local Ethernet Interface
ip address 192.168.77.253 255.255.255.0
ip access-group LAN_IN in
ip nat inside
ip virtual-reassembly
speed auto
!
interface ATM1/0
no ip address
shutdown
no atm ilmi-keepalive
dsl operating-mode auto
!
interface Dialer1
ip address negotiated
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer1
!
no ip http server
no ip http secure-server
ip nat inside source list 1 interface Dialer1 overload
!
ip access-list extended LAN_IN
permit tcp host 192.168.77.172 host 192.168.77.253 eq 22
permit icmp host 192.168.77.172 host 192.168.77.253
deny ip any any
!
access-list 1 permit 192.168.77.0 0.0.0.255
dialer-list 1 protocol ip permit
!
control-plane
!
line con 0
exec-timeout 0 0
line aux 0
exec-timeout 0 0
line vty 0 4
exec-timeout 15 0
transport input ssh
!
end