gew77
01-12-08, 17:06
Καλησπέρα σε όλους.
Προσπαθώ να φτιάξω το configuration σε ένα cisco 2811 με 4 adsl wics ως εξής:
1. Σε κάθε wic να λειτουργεί ένα account ("μια γραμμή") , οπότε 4 σύνολο
2. Απο κάθε wic να φεύγουν συγκεκριμένες ip μόνο (με σκοπό να μοιράζεται το φορτίο). Το έχω κάνει αυτό με την εντολή που είδα κάπου στο forum π.χ. για το 1ο wic (dialer0)
route-map equal-access permit 10
match ip address 101
set interface Dialer0
και access lists, όπου χωρίζω τέσσερις ομάδες (101,102,103,104). Γνωρίζω οτι ίσως να γίνεται και με καλύτερους τρόπους load balancing και ίσως κάποιο qos policy, και κάποια πρόταση προς άλλη κατευθυνση είναι δεκτή.
Το θέμα είναι όμως αλλού. Το configuration αυτό δουλεύει με ένα όμως πρόβλημα. Τα pc που συνδέονται με τον router παίζουν διάφορα online παιχνίδια όπως wowΙΙΙ dota. Όταν κάποιος "φτιάχνει πίστα" μπορεί όλο το internet να μπαίνει και η ομάδα που ανήκει στο συγκεκριμένο wic (πχ όσοι ανήκουν στο access list 101). Δεν μπορούν όμως μπάινουν υπολογιστές που πέφτουν σε άλλο wic "ανήκουν σε άλλο access list" . Φαντάζομαι οτι είναι πρόβλημα των access list. Παρακαλώ για τα φώτα σας και ευχαριστώ προκαταβολικά! Ιδού και το sh run:
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname cisco2811
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
!
!
username xxxxx privilege 15 secret 5 xxxxxxxxxx
!
!
!
interface FastEthernet0/0
description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0$
ip address 10.10.30.223 255.255.255.0
ip nat inside
ip route-cache flow
ip policy route-map equal-access
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/0/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface ATM0/1/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 2
!
!
interface ATM0/2/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 3
!
!
interface ATM0/3/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 4
!
!
interface Dialer0
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 1
ppp authentication chap pap callin
ppp chap hostname xxx1@otenet.gr
ppp chap password 7 01160A0D4904135F74
ppp pap sent-username xxx1@otenet.gr password 7 14121E021E0B3F7B71
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
interface Dialer1
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 2
ppp authentication chap pap callin
ppp chap hostname xxx2@otenet.gr
ppp chap password 7 121C091E000419547C
ppp pap sent-username xxx2@otenet.gr password 7 13001B1B1903117A7D
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
interface Dialer2
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 3
keepalive 30
ppp authentication chap pap callin
ppp chap hostname xxx3@otenet.gr
ppp chap password 7 0609012D45400C2654
ppp pap sent-username xxx3@otenet.gr password 7 14181C07050A2F1475
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
interface Dialer3
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 4
ppp authentication chap pap callin
ppp chap hostname xxx4@otenet.gr
ppp chap password 7 050C071B2E5F1F
ppp pap sent-username xxx4@otenet.gr password 7 0201054F04155E
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 0.0.0.0 0.0.0.0 Dialer0
ip route 0.0.0.0 0.0.0.0 Dialer2
ip route 0.0.0.0 0.0.0.0 Dialer3
!
ip http server
ip http access-class 23
ip http authentication local
ip http timeout-policy idle 5 life 86400 requests 10000
ip nat inside source list 101 interface Dialer0 overload
ip nat inside source list 102 interface Dialer1 overload
ip nat inside source list 103 interface Dialer2 overload
ip nat inside source list 104 interface Dialer3 overload
ip nat inside source static tcp 10.10.30.25 6125 interface Dialer0 6125
ip nat inside source static tcp 10.10.30.26 6126 interface Dialer0 6126
ip nat inside source static tcp 10.10.30.31 6131 interface Dialer0 6131
ip nat inside source static tcp 10.10.30.32 6132 interface Dialer0 6132
ip nat inside source static tcp 10.10.30.33 6133 interface Dialer0 6133
ip nat inside source static tcp 10.10.30.34 6134 interface Dialer0 6134
ip nat inside source static tcp 10.10.30.35 6135 interface Dialer0 6135
ip nat inside source static tcp 10.10.30.36 6136 interface Dialer0 6136
ip nat inside source static tcp 10.10.30.37 6137 interface Dialer0 6137
ip nat inside source static tcp 10.10.30.38 6138 interface Dialer0 6138
ip nat inside source static tcp 10.10.30.39 6139 interface Dialer0 6139
ip nat inside source static tcp 10.10.30.40 6140 interface Dialer0 6140
ip nat inside source static tcp 10.10.30.27 6127 interface Dialer1 6127
ip nat inside source static tcp 10.10.30.28 6128 interface Dialer1 6128
ip nat inside source static tcp 10.10.30.41 6141 interface Dialer1 6141
ip nat inside source static tcp 10.10.30.42 6142 interface Dialer1 6142
ip nat inside source static tcp 10.10.30.71 6171 interface Dialer1 6171
ip nat inside source static tcp 10.10.30.72 6172 interface Dialer1 6172
ip nat inside source static tcp 10.10.30.73 6173 interface Dialer1 6173
ip nat inside source static tcp 10.10.30.74 6174 interface Dialer1 6174
ip nat inside source static tcp 10.10.30.75 6175 interface Dialer1 6175
ip nat inside source static tcp 10.10.30.76 6176 interface Dialer1 6176
ip nat inside source static tcp 10.10.30.77 6177 interface Dialer1 6177
ip nat inside source static tcp 10.10.30.78 6178 interface Dialer1 6178
ip nat inside source static tcp 10.10.30.29 6129 interface Dialer2 6129
ip nat inside source static tcp 10.10.30.30 6130 interface Dialer2 6130
ip nat inside source static tcp 10.10.30.52 6151 interface Dialer2 6151
ip nat inside source static tcp 10.10.30.52 6152 interface Dialer2 6152
ip nat inside source static tcp 10.10.30.53 6153 interface Dialer2 6153
ip nat inside source static tcp 10.10.30.54 6154 interface Dialer2 6154
ip nat inside source static tcp 10.10.30.55 6155 interface Dialer2 6155
ip nat inside source static tcp 10.10.30.56 6156 interface Dialer2 6156
ip nat inside source static tcp 10.10.30.57 6157 interface Dialer2 6157
ip nat inside source static tcp 10.10.30.58 6158 interface Dialer2 6158
ip nat inside source static tcp 10.10.30.59 6159 interface Dialer2 6159
ip nat inside source static tcp 10.10.30.60 6160 interface Dialer2 6160
ip nat inside source static tcp 10.10.30.61 6161 interface Dialer3 6161
ip nat inside source static tcp 10.10.30.62 6162 interface Dialer3 6162
ip nat inside source static tcp 10.10.30.63 6163 interface Dialer3 6163
ip nat inside source static tcp 10.10.30.64 6164 interface Dialer3 6164
ip nat inside source static tcp 10.10.30.79 6179 interface Dialer3 6179
ip nat inside source static tcp 10.10.30.80 6180 interface Dialer3 6180
ip nat inside source static tcp 10.10.30.81 6181 interface Dialer3 6181
ip nat inside source static tcp 10.10.30.82 6182 interface Dialer3 6182
ip nat inside source static tcp 10.10.30.83 6183 interface Dialer3 6183
ip nat inside source static tcp 10.10.30.84 6184 interface Dialer3 6184
ip nat inside source static tcp 10.10.30.85 6185 interface Dialer3 6185
!
access-list 101 permit ip host 10.10.30.25 any
access-list 101 permit ip host 10.10.30.26 any
access-list 101 permit ip host 10.10.30.31 any
access-list 101 permit ip host 10.10.30.32 any
access-list 101 permit ip host 10.10.30.33 any
access-list 101 permit ip host 10.10.30.34 any
access-list 101 permit ip host 10.10.30.35 any
access-list 101 permit ip host 10.10.30.36 any
access-list 101 permit ip host 10.10.30.37 any
access-list 101 permit ip host 10.10.30.38 any
access-list 101 permit ip host 10.10.30.39 any
access-list 101 permit ip host 10.10.30.40 any
access-list 102 permit ip host 10.10.30.27 any
access-list 102 permit ip host 10.10.30.28 any
access-list 102 permit ip host 10.10.30.41 any
access-list 102 permit ip host 10.10.30.42 any
access-list 102 permit ip host 10.10.30.71 any
access-list 102 permit ip host 10.10.30.72 any
access-list 102 permit ip host 10.10.30.73 any
access-list 102 permit ip host 10.10.30.74 any
access-list 102 permit ip host 10.10.30.75 any
access-list 102 permit ip host 10.10.30.76 any
access-list 102 permit ip host 10.10.30.77 any
access-list 102 permit ip host 10.10.30.78 any
access-list 103 permit ip host 10.10.30.29 any
access-list 103 permit ip host 10.10.30.30 any
access-list 103 permit ip host 10.10.30.51 any
access-list 103 permit ip host 10.10.30.52 any
access-list 103 permit ip host 10.10.30.53 any
access-list 103 permit ip host 10.10.30.54 any
access-list 103 permit ip host 10.10.30.55 any
access-list 103 permit ip host 10.10.30.56 any
access-list 103 permit ip host 10.10.30.57 any
access-list 103 permit ip host 10.10.30.58 any
access-list 103 permit ip host 10.10.30.59 any
access-list 103 permit ip host 10.10.30.60 any
access-list 104 permit ip host 10.10.30.61 any
access-list 104 permit ip host 10.10.30.62 any
access-list 104 permit ip host 10.10.30.63 any
access-list 104 permit ip host 10.10.30.64 any
access-list 104 permit ip host 10.10.30.79 any
access-list 104 permit ip host 10.10.30.80 any
access-list 104 permit ip host 10.10.30.81 any
access-list 104 permit ip host 10.10.30.82 any
access-list 104 permit ip host 10.10.30.83 any
access-list 104 permit ip host 10.10.30.84 any
access-list 104 permit ip host 10.10.30.85 any
dialer-list 1 protocol ip permit
route-map equal-access permit 10
match ip address 101
set interface Dialer0
!
route-map equal-access permit 20
match ip address 102
set interface Dialer1
!
route-map equal-access permit 30
match ip address 103
set interface Dialer2
!
route-map equal-access permit 40
match ip address 104
set interface Dialer3
!
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
access-class 23 in
login local
transport input ssh
line vty 5 15
access-class 23 in
privilege level 15
login local
transport input ssh
!
scheduler allocate 20000 1000
!
end
Προσπαθώ να φτιάξω το configuration σε ένα cisco 2811 με 4 adsl wics ως εξής:
1. Σε κάθε wic να λειτουργεί ένα account ("μια γραμμή") , οπότε 4 σύνολο
2. Απο κάθε wic να φεύγουν συγκεκριμένες ip μόνο (με σκοπό να μοιράζεται το φορτίο). Το έχω κάνει αυτό με την εντολή που είδα κάπου στο forum π.χ. για το 1ο wic (dialer0)
route-map equal-access permit 10
match ip address 101
set interface Dialer0
και access lists, όπου χωρίζω τέσσερις ομάδες (101,102,103,104). Γνωρίζω οτι ίσως να γίνεται και με καλύτερους τρόπους load balancing και ίσως κάποιο qos policy, και κάποια πρόταση προς άλλη κατευθυνση είναι δεκτή.
Το θέμα είναι όμως αλλού. Το configuration αυτό δουλεύει με ένα όμως πρόβλημα. Τα pc που συνδέονται με τον router παίζουν διάφορα online παιχνίδια όπως wowΙΙΙ dota. Όταν κάποιος "φτιάχνει πίστα" μπορεί όλο το internet να μπαίνει και η ομάδα που ανήκει στο συγκεκριμένο wic (πχ όσοι ανήκουν στο access list 101). Δεν μπορούν όμως μπάινουν υπολογιστές που πέφτουν σε άλλο wic "ανήκουν σε άλλο access list" . Φαντάζομαι οτι είναι πρόβλημα των access list. Παρακαλώ για τα φώτα σας και ευχαριστώ προκαταβολικά! Ιδού και το sh run:
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname cisco2811
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
no aaa new-model
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
!
!
username xxxxx privilege 15 secret 5 xxxxxxxxxx
!
!
!
interface FastEthernet0/0
description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0$
ip address 10.10.30.223 255.255.255.0
ip nat inside
ip route-cache flow
ip policy route-map equal-access
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/0/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface ATM0/1/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 2
!
!
interface ATM0/2/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 3
!
!
interface ATM0/3/0
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 4
!
!
interface Dialer0
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 1
ppp authentication chap pap callin
ppp chap hostname xxx1@otenet.gr
ppp chap password 7 01160A0D4904135F74
ppp pap sent-username xxx1@otenet.gr password 7 14121E021E0B3F7B71
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
interface Dialer1
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 2
ppp authentication chap pap callin
ppp chap hostname xxx2@otenet.gr
ppp chap password 7 121C091E000419547C
ppp pap sent-username xxx2@otenet.gr password 7 13001B1B1903117A7D
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
interface Dialer2
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 3
keepalive 30
ppp authentication chap pap callin
ppp chap hostname xxx3@otenet.gr
ppp chap password 7 0609012D45400C2654
ppp pap sent-username xxx3@otenet.gr password 7 14181C07050A2F1475
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
interface Dialer3
ip address negotiated
ip load-sharing per-packet
ip nat outside
encapsulation ppp
dialer pool 4
ppp authentication chap pap callin
ppp chap hostname xxx4@otenet.gr
ppp chap password 7 050C071B2E5F1F
ppp pap sent-username xxx4@otenet.gr password 7 0201054F04155E
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 0.0.0.0 0.0.0.0 Dialer0
ip route 0.0.0.0 0.0.0.0 Dialer2
ip route 0.0.0.0 0.0.0.0 Dialer3
!
ip http server
ip http access-class 23
ip http authentication local
ip http timeout-policy idle 5 life 86400 requests 10000
ip nat inside source list 101 interface Dialer0 overload
ip nat inside source list 102 interface Dialer1 overload
ip nat inside source list 103 interface Dialer2 overload
ip nat inside source list 104 interface Dialer3 overload
ip nat inside source static tcp 10.10.30.25 6125 interface Dialer0 6125
ip nat inside source static tcp 10.10.30.26 6126 interface Dialer0 6126
ip nat inside source static tcp 10.10.30.31 6131 interface Dialer0 6131
ip nat inside source static tcp 10.10.30.32 6132 interface Dialer0 6132
ip nat inside source static tcp 10.10.30.33 6133 interface Dialer0 6133
ip nat inside source static tcp 10.10.30.34 6134 interface Dialer0 6134
ip nat inside source static tcp 10.10.30.35 6135 interface Dialer0 6135
ip nat inside source static tcp 10.10.30.36 6136 interface Dialer0 6136
ip nat inside source static tcp 10.10.30.37 6137 interface Dialer0 6137
ip nat inside source static tcp 10.10.30.38 6138 interface Dialer0 6138
ip nat inside source static tcp 10.10.30.39 6139 interface Dialer0 6139
ip nat inside source static tcp 10.10.30.40 6140 interface Dialer0 6140
ip nat inside source static tcp 10.10.30.27 6127 interface Dialer1 6127
ip nat inside source static tcp 10.10.30.28 6128 interface Dialer1 6128
ip nat inside source static tcp 10.10.30.41 6141 interface Dialer1 6141
ip nat inside source static tcp 10.10.30.42 6142 interface Dialer1 6142
ip nat inside source static tcp 10.10.30.71 6171 interface Dialer1 6171
ip nat inside source static tcp 10.10.30.72 6172 interface Dialer1 6172
ip nat inside source static tcp 10.10.30.73 6173 interface Dialer1 6173
ip nat inside source static tcp 10.10.30.74 6174 interface Dialer1 6174
ip nat inside source static tcp 10.10.30.75 6175 interface Dialer1 6175
ip nat inside source static tcp 10.10.30.76 6176 interface Dialer1 6176
ip nat inside source static tcp 10.10.30.77 6177 interface Dialer1 6177
ip nat inside source static tcp 10.10.30.78 6178 interface Dialer1 6178
ip nat inside source static tcp 10.10.30.29 6129 interface Dialer2 6129
ip nat inside source static tcp 10.10.30.30 6130 interface Dialer2 6130
ip nat inside source static tcp 10.10.30.52 6151 interface Dialer2 6151
ip nat inside source static tcp 10.10.30.52 6152 interface Dialer2 6152
ip nat inside source static tcp 10.10.30.53 6153 interface Dialer2 6153
ip nat inside source static tcp 10.10.30.54 6154 interface Dialer2 6154
ip nat inside source static tcp 10.10.30.55 6155 interface Dialer2 6155
ip nat inside source static tcp 10.10.30.56 6156 interface Dialer2 6156
ip nat inside source static tcp 10.10.30.57 6157 interface Dialer2 6157
ip nat inside source static tcp 10.10.30.58 6158 interface Dialer2 6158
ip nat inside source static tcp 10.10.30.59 6159 interface Dialer2 6159
ip nat inside source static tcp 10.10.30.60 6160 interface Dialer2 6160
ip nat inside source static tcp 10.10.30.61 6161 interface Dialer3 6161
ip nat inside source static tcp 10.10.30.62 6162 interface Dialer3 6162
ip nat inside source static tcp 10.10.30.63 6163 interface Dialer3 6163
ip nat inside source static tcp 10.10.30.64 6164 interface Dialer3 6164
ip nat inside source static tcp 10.10.30.79 6179 interface Dialer3 6179
ip nat inside source static tcp 10.10.30.80 6180 interface Dialer3 6180
ip nat inside source static tcp 10.10.30.81 6181 interface Dialer3 6181
ip nat inside source static tcp 10.10.30.82 6182 interface Dialer3 6182
ip nat inside source static tcp 10.10.30.83 6183 interface Dialer3 6183
ip nat inside source static tcp 10.10.30.84 6184 interface Dialer3 6184
ip nat inside source static tcp 10.10.30.85 6185 interface Dialer3 6185
!
access-list 101 permit ip host 10.10.30.25 any
access-list 101 permit ip host 10.10.30.26 any
access-list 101 permit ip host 10.10.30.31 any
access-list 101 permit ip host 10.10.30.32 any
access-list 101 permit ip host 10.10.30.33 any
access-list 101 permit ip host 10.10.30.34 any
access-list 101 permit ip host 10.10.30.35 any
access-list 101 permit ip host 10.10.30.36 any
access-list 101 permit ip host 10.10.30.37 any
access-list 101 permit ip host 10.10.30.38 any
access-list 101 permit ip host 10.10.30.39 any
access-list 101 permit ip host 10.10.30.40 any
access-list 102 permit ip host 10.10.30.27 any
access-list 102 permit ip host 10.10.30.28 any
access-list 102 permit ip host 10.10.30.41 any
access-list 102 permit ip host 10.10.30.42 any
access-list 102 permit ip host 10.10.30.71 any
access-list 102 permit ip host 10.10.30.72 any
access-list 102 permit ip host 10.10.30.73 any
access-list 102 permit ip host 10.10.30.74 any
access-list 102 permit ip host 10.10.30.75 any
access-list 102 permit ip host 10.10.30.76 any
access-list 102 permit ip host 10.10.30.77 any
access-list 102 permit ip host 10.10.30.78 any
access-list 103 permit ip host 10.10.30.29 any
access-list 103 permit ip host 10.10.30.30 any
access-list 103 permit ip host 10.10.30.51 any
access-list 103 permit ip host 10.10.30.52 any
access-list 103 permit ip host 10.10.30.53 any
access-list 103 permit ip host 10.10.30.54 any
access-list 103 permit ip host 10.10.30.55 any
access-list 103 permit ip host 10.10.30.56 any
access-list 103 permit ip host 10.10.30.57 any
access-list 103 permit ip host 10.10.30.58 any
access-list 103 permit ip host 10.10.30.59 any
access-list 103 permit ip host 10.10.30.60 any
access-list 104 permit ip host 10.10.30.61 any
access-list 104 permit ip host 10.10.30.62 any
access-list 104 permit ip host 10.10.30.63 any
access-list 104 permit ip host 10.10.30.64 any
access-list 104 permit ip host 10.10.30.79 any
access-list 104 permit ip host 10.10.30.80 any
access-list 104 permit ip host 10.10.30.81 any
access-list 104 permit ip host 10.10.30.82 any
access-list 104 permit ip host 10.10.30.83 any
access-list 104 permit ip host 10.10.30.84 any
access-list 104 permit ip host 10.10.30.85 any
dialer-list 1 protocol ip permit
route-map equal-access permit 10
match ip address 101
set interface Dialer0
!
route-map equal-access permit 20
match ip address 102
set interface Dialer1
!
route-map equal-access permit 30
match ip address 103
set interface Dialer2
!
route-map equal-access permit 40
match ip address 104
set interface Dialer3
!
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
access-class 23 in
login local
transport input ssh
line vty 5 15
access-class 23 in
privilege level 15
login local
transport input ssh
!
scheduler allocate 20000 1000
!
end