cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
srk2016
New Contributor

Can someone check this config on a NV4305 and see if it looks okay or is missing something ?

3 Bonded T1's -PPP1

Using ETH 0/1-

! ADTRAN, Inc. OS version 18.02.03.00
! Boot ROM version 08.02.00.XA
! Platform: NetVanta 4305, part number
! Serial number
!
!
hostname "AD"
enable password encrypted
!
clock timezone
!
ip subnet-zero
ip classless
ip routing
!

ip domain-proxy
!

no auto-config
!
event-history on
no logging forwarding
logging forwarding priority-level info
no logging email
!
service password-encryption
!
username "admin" password encrypted "
!
banner motd @
****This device is property of AD.  If you are not authorized to access this device you must disconnect imediately.**** @
!

ip firewall
no ip firewall alg msn
no ip firewall alg mszone
no ip firewall alg h323

no dot11ap access-point-control

interface eth 0/1
  ip address  62.xxx..xxx.xxx  255.255.255.248
  ip access-policy Private
  no shutdown
!

interface eth 0/2
  no ip address
  no shutdown

interface t1 3/1
  tdm-group 1 timeslots 1-24 speed 64
  no shutdown
!
interface t1 3/2
  tdm-group 2 timeslots 1-24 speed 64
  no shutdown
!
interface t1 3/3
  tdm-group 3 timeslots 1-24 speed 64
  no shutdown
!
interface t1 3/4
  shutdown
!
interface t1 3/5
  shutdown
!
interface t1 3/6
  shutdown
!
interface t1 3/7
  shutdown
!
interface t1 3/8
  shutdown
!
interface ppp 1
  ip address  63.xxx.xxx.xxx  255.255.255.252
  ip access-policy Public
  ppp multilink
  no shutdown
  cross-connect 1 t1 3/1 1 ppp 1
  cross-connect 2 t1 3/2 2 ppp 1
  cross-connect 3 t1 3/3 3 ppp 1
!

ip access-list extended self
  remark Traffic to NetVanta
  permit ip any  any     log
!
ip access-list extended web-acl-9
  permit tcp any  any eq telnet   log
  permit tcp any  any eq https   log
  permit tcp any  any eq ssh   log

!
ip access-list extended wizard-remote-access
  remark do not hand edit this ACL

  permit tcp any  any eq telnet   log
  permit tcp any  any eq ssh   log
  permit icmp any  any  echo   log
  permit tcp any  any eq https   log
!
!
ip policy-class Private
  allow list web-acl-9 self
  nat source list self interface ppp 1 overload
!
ip policy-class Public
  allow list wizard-remote-access self
!
!
ip route 0.0.0.0 0.0.0.0 62.xxx.xxx.xxx (ppp1)
!
no tftp server
no tftp server overwrite
ip http server
ip http secure-server
no snmp agent
no ip ftp server
no ip scp server
no ip sntp server
!
!
ip sip udp 5060
ip sip tcp 5060
!
!

line con 0
  login
  password encrypted 222e22531af1c4d63f911ea194332c41c88a
!
line telnet 0 4
  login
  password encrypted 2f276d40e01aaad68379dff3045b5a8dbd9f
  no shutdown
line ssh 0 4
  login local-userlist
  no shutdown

Any recommendation would be helpful.

Thank You!

0 Kudos