no service pad service tcp-keepalives-in service tcp-keepalives-out service timestamps debug datetime msec localtime show-timezone service timestamps log datetime msec localtime show-timezone no service password-encryption service sequence-numbers ! hostname 2811XXX01 ! boot-start-marker boot-end-marker ! logging buffered 51200 warnings ! aaa new-model ! ! aaa authentication login default local aaa authorization exec default local ! aaa session-id common memory-size iomem 10 clock timezone PST -8 clock summer-time PST recurring no ip source-route ! ! ip cef no ip dhcp use vrf connected ! ip dhcp pool data network 10.X.2.0 255.255.255.0 default-router 10.x.2.1 dns-server 10.1.x.10 10.1.x.11 lease 6 ! ip dhcp pool voice network 10.x.3.0 255.255.255.0 default-router 10.x.3.1 dns-server 10.1.x.10 10.1.x.11 option 150 ip 172.x.1.2 172.x.1.1 lease 6 ! ! no ip bootp server no ip domain lookup ip domain name XXXXXX ip inspect name SDM_MEDIUM cuseeme ip inspect name SDM_MEDIUM dns ip inspect name SDM_MEDIUM ftp ip inspect name SDM_MEDIUM h323 ip inspect name SDM_MEDIUM icmp ip inspect name SDM_MEDIUM imap reset ip inspect name SDM_MEDIUM pop3 reset ip inspect name SDM_MEDIUM netshow ip inspect name SDM_MEDIUM rcmd ip inspect name SDM_MEDIUM realaudio ip inspect name SDM_MEDIUM rtsp ip inspect name SDM_MEDIUM esmtp ip inspect name SDM_MEDIUM sqlnet ip inspect name SDM_MEDIUM streamworks ip inspect name SDM_MEDIUM tftp ip inspect name SDM_MEDIUM tcp ip inspect name SDM_MEDIUM udp ip inspect name SDM_MEDIUM vdolive ip auth-proxy max-nodata-conns 3 ip admission max-nodata-conns 3 ip ips sdf location flash://128MB.sdf ip ips notify SDEE ip ips name sdm_ips_rule ! ! voice-card 0 no dspfarm ! password encryption aes ! ! ip ssh version 2 ! ! interface Null0 no ip unreachables ! interface Multilink3 description $FW_INSIDE$ bandwidth 1544 ip address 10.255.255.X 255.255.255.252 no ip redirects no ip unreachables no ip proxy-arp ip route-cache flow ppp multilink ppp multilink fragment delay 10 ppp multilink interleave ppp multilink group 3 max-reserved-bandwidth 100 service-policy output T1-output-policy ! interface FastEthernet0/0 description to_Internet no ip address ip access-group 101 in no ip redirects no ip unreachables no ip proxy-arp ip nat outside ip inspect SDM_MEDIUM out ip ips sdm_ips_rule in ip virtual-reassembly ip route-cache flow duplex auto speed auto no mop enabled shut down ! interface FastEthernet0/1 no ip address no ip redirects no ip unreachables no ip proxy-arp ip route-cache flow duplex auto speed auto no mop enabled no shut ! interface FastEthernet0/1.1 encapsulation dot1Q 1 native ip address 10.x.1.1 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp no shut ! interface FastEthernet0/1.2 description DATA encapsulation dot1Q 2 ip address 10.x.2.1 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp no shut ! interface FastEthernet0/1.3 description VOICE encapsulation dot1Q 3 ip address 10.x.3.1 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp no shut ! interface Serial0/2/0 no ip address no ip redirects no ip unreachables no ip proxy-arp encapsulation ppp ip route-cache flow no fair-queue service-module t1 timeslots 1-24 ppp multilink ppp multilink group 3 max-reserved-bandwidth 100 no shut ! ip forward-protocol nd ip route 0.0.0.0 0.0.0.0 10.255.255.29 ip route 10.0.0.0 255.0.0.0 10.255.255.29 200 ip route 10.17.0.0 255.255.0.0 10.255.255.50 ip route 172.16.0.0 255.255.0.0 10.255.255.29 ip route 172.17.0.0 255.255.0.0 10.255.255.29 ip route 172.18.0.0 255.255.0.0 10.255.255.29 ip route 192.168.0.0 255.255.0.0 10.255.255.29 ! ! no ip http server ip http authentication local ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000 ip http path flash: ! ip access-list standard r0 ! access-list 1 remark SDM_ACL Category=2 access-list 1 permit 10.8.3.0 0.0.0.255 access-list 1 permit 10.8.2.0 0.0.0.255 access-list 101 deny ip 10.8.0.0 0.0.255.255 any access-list 101 permit udp any eq bootps any eq bootpc access-list 101 remark firewall-acl access-list 101 permit udp host 129.6.15.28 eq ntp any eq ntp access-list 101 permit udp any any eq non500-isakmp access-list 101 permit udp any any eq isakmp access-list 101 permit esp any any access-list 101 permit ahp any any access-list 101 permit gre any any access-list 101 permit icmp any any echo-reply access-list 101 permit icmp any any time-exceeded access-list 101 permit icmp any any unreachable access-list 101 deny ip 10.0.0.0 0.255.255.255 any access-list 101 deny ip 172.16.0.0 0.15.255.255 any access-list 101 deny ip 192.168.0.0 0.0.255.255 any access-list 101 deny ip 127.0.0.0 0.255.255.255 any access-list 101 deny ip host 255.255.255.255 any access-list 101 deny ip any any log snmp-server community m00se RO r0 snmp-server community s0ck3y3 RW ! ! ! ! control-plane ! ! trunk group FXO-PORTS max-calls any 3 description "Trunk Group for FXO Ports" hunt-scheme round-robin ! voice-port 0/0/0 trunk-group FXO-PORTS 1 timeouts call-disconnect 1 connection plar opx 1700 caller-id enable timing hookflash-out 50 ! voice-port 0/0/1 trunk-group FXO-PORTS 2 timeouts call-disconnect 1 connection plar opx 1701 caller-id enable timing hookflash-out 50 ! voice-port 0/0/2 trunk-group FXO-PORTS 3 timeouts call-disconnect 1 connection plar opx 1702 caller-id enable timing hookflash-out 50 ! voice-port 0/0/3 trunk-group FXO-PORTS 4 timeouts call-disconnect 1 connection plar opx 1703 caller-id enable timing hookflash-out 50 ! ! ! ! call-manager-fallback max-conferences 8 gain -6 transfer-system full-consult ip source-address 10.8.3.1 port 2000 max-ephones 24 max-dn 12 default-destination 2630 access-code fxo 9 call-forward noan 2630 timeout 15 ! ! voice call send-alert ! voice service voip allow-connections h323 to h323 allow-connections h323 to sip allow-connections sip to h323 supplementary-service h450.12 redirect ip2ip h323 h225 h245-address on-connect ! voice class h323 1 h225 h245-address on-connect h225 h245-address facility h225 h245-address progress h225 h245-address sync call preserve telephony-service ccm-compatible ccm-compatible ! dial-peer voice 5000 voip Des 5 Digit Dial to preference 1 destination-pattern 5... session target ipv4:172.16.1.2 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 5001 voip Des 5 Digit Dial to preference 2 destination-pattern 5... session target ipv4:172.16.1.1 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 91 voip des LD rule to CallManagers preference 1 destination-pattern 91.......... session target ipv4:172.16.1.2 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 912 voip preference 2 des LD rule to CallManagers destination-pattern 91.......... session target ipv4:172.16.1.1 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 9011 voip preference 2 des Int rule to CallManagers destination-pattern 9011T session target ipv4:172.16.1.1 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 9012 voip preference 2 des LD rule to CallManagers destination-pattern 9011T session target ipv4:172.16.1.2 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 9604 pots des Local call out via the FXO-PORTS trunkgroup FXO-PORTS destination-pattern 9XXX....... forward-digits 10 ! dial-peer voice 911 pots des 911 via the FXO-PORTS trunkgroup FXO-PORTS destination-pattern 911 prefix 911 ! dial-peer voice 411 pots des 411 via the FXO-PORTS trunkgroup FXO-PORTS destination-pattern 411 prefix 411 ! dial-peer voice 919 pots des Enviroment Cananda the FXO-PORTS trunkgroup FXO-PORTS destination-pattern 919005655555 forward-digits 11 ! ! dial-peer voice 1000 voip description XXX preference 1 destination-pattern 1... session target ipv4:172.16.1.2 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 1001 voip description XXX preference 2 destination-pattern 1... session target ipv4:172.16.1.1 dtmf-relay h245-alphanumeric no vad ! dial-peer voice 2222 pots des OutDoor Paging destination-pattern 2222 port 0/2/0 forward-digits 0 ! ! ! line con 0 logging synchronous line aux 0 line vty 0 4 privilege level 15 logging synchronous transport input telnet ssh line vty 5 15 privilege level 15 logging synchronous transport input telnet ssh ! scheduler allocate 20000 1000 ntp clock-period 17180249 ntp server 129.6.15.28 ! end