! Written by Don R. Crawley for soundtraining.net 2/17/08
! This configuration is for testing purposes only.
! No warranty is offered or implied.  Use at your own risk.
! (c) 2008, soundtraining.net.  All rights reserved.
!
! Exclamation marks indicate comments.
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname soundtraining.net_r1
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$tPxG$.CeZWrPrJumKLkhxN3/XI/
!
memory-size iomem 15
no aaa new-model
ip subnet-zero
ip cef
!
!
! This section sets up DHCP on the router's inside interface
ip dhcp pool net-10.16.0.0
   network 10.16.0.0 255.240.0.0
   dns-server 192.168.16.2
   default-router 10.16.0.1
   domain-name soundtraining.net
   netbios-name-server 192.168.16.2
   netbios-node-type h-node
!
ip audit po max-events 100
!
interface Ethernet0/0
 ip address 10.16.0.1 255.240.0.0
 ip nat inside
 half-duplex
!
interface Ethernet0/1
 ip address dhcp
 ip nat outside
 half-duplex
!
! This line enables PAT for inside hosts on the outside (e0/1) interface
ip nat inside source list 101 interface Ethernet0/1 overload
!
! This line forwards incoming PPTP (port 1723) traffic on the outside (e0/1) 
! interface to the VPN server host located at 10.16.0.4 
ip nat inside source static tcp 10.16.0.2 1723 interface Ethernet0/1 1723
!
no ip http server
no ip http secure-server
ip classless
!
! This line works in conjunction with the above "ip nat inside source 
! list..." line to permit internal hosts to use PAT to go to the Internet
access-list 101 permit ip any any
!
line con 0
 password cisco
 logging synchronous
line aux 0
line vty 0 4
 password cisco
 logging synchronous
 login
!
!
end