#
sysname quydway
#
ike local-name client
#
firewall packet-filter enable
firewall packet-filter default permit
#
bims enable
bims device-id sslyq008
bims ip address 172.31.132.200 port 80
bims interval 120
bims boot request
bims sharekey simple 12345
#
firewall statistic system enable
#
radius scheme system
#
domain system
#
local-user admin
password cipher =;/+:Z2]U#7Q=^Q`MAF4<1!!
service-type telnet terminal
level 3
service-type ftp
#
ike peer center
exchange-mode aggressive
pre-shared-key lyqker
id-type name
remote-name center
remote-address 222.81.12.45
nat traversal
#
ipsec proposal p1
#
ipsec policy policy1 1 isakmp
security acl 3000
ike-peer center
proposal p1
#
acl number 3000
rule 0 permit ip source 10.10.143.0 0.0.0.255 destination 172.0.0.0 0.255.255.255
rule 1 permit ip source 10.10.143.0 0.0.0.255 destination 10.0.0.0 0.255.255.255
#
interface Dialer0
link-protocol ppp
ppp pap local-user 8828881 password simple 123789
ip address ppp-negotiate
dialer user mjb
dialer-group 1
dialer bundle 1
ipsec policy policy1
#
interface Ethernet1/0
description TO LAN
ip address 10.10.143.254 255.255.255.0
#
interface Ethernet2/0
speed 10
duplex full
pppoe-client dial-bundle-number 1
ip address dhcp-alloc
#
interface NULL0
#
firewall zone local
set priority 100
#
firewall zone trust
add interface Ethernet1/0
set priority 85
#
firewall zone untrust
add interface Ethernet2/0
add interface Dialer0
set priority 5
#
firewall zone DMZ
set priority 50
#
firewall interzone local trust
#
firewall interzone local untrust
#
firewall interzone local DMZ
#
firewall interzone trust untrust
#
firewall interzone trust DMZ
#
firewall interzone DMZ untrust
#
FTP server enable
#
ip route-static 0.0.0.0 0.0.0.0 Dialer 0 preference 60
#
snmp-agent
snmp-agent local-engineid 000007DB7F0000010000760F
snmp-agent community read lyqkey
snmp-agent community write lyqrw
snmp-agent sys-info version v3
#
user-interface con 0
user-interface vty 0 4
authentication-mode scheme
#
return