Current configuration : 3876 bytes ! ! Last configuration change at 15:47:41 UTC Fri Feb 25 2022 ! version 15.6 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname CLIENT2 ! boot-start-marker boot-end-marker ! ! ! no aaa new-model ethernet lmi ce ! ! ! mmi polling-interval 60 no mmi auto-configure no mmi pvc mmi snmp-timeout 180 ! ! ! ! ! ! ! ! ! ! ! ip cef no ipv6 cef ! multilink bundle-name authenticated ! ! ! ! ! redundancy ! ! ! ! crypto ikev2 authorization policy FlexVPNIKEPOL route set interface route set remote ipv4 192.168.2.0 255.255.255.0 ! ! ! crypto ikev2 keyring KR peer SERVER1 address 172.16.0.3 pre-shared-key local Client2Key pre-shared-key remote ServerToClient2Key ! ! ! crypto ikev2 profile prof match identity remote address 172.16.0.3 255.255.255.255 identity local fqdn client2.domain.com authentication local pre-share authentication remote pre-share keyring local KR aaa authorization group psk list default FlexVPNIKEPOL ! crypto ikev2 client flexvpn flex peer 1 172.16.0.3 client connect Tunnel0 ! ! ! crypto ipsec transform-set trans esp-aes mode tunnel ! ! crypto ipsec profile ipsecprof set transform-set trans set ikev2-profile prof ! ! ! ! ! ! interface Tunnel0 ip address negotiated tunnel source GigabitEthernet0/0 tunnel mode ipsec ipv4 tunnel destination dynamic tunnel protection ipsec profile ipsecprof ! interface GigabitEthernet0/0 ip address dhcp ip virtual-reassembly in duplex full speed 100 media-type rj45 ! interface GigabitEthernet0/1 ip address 192.168.2.1 255.255.255.0 duplex auto speed auto media-type rj45 ! interface GigabitEthernet0/2 no ip address shutdown duplex auto speed auto media-type rj45 ! interface GigabitEthernet0/3 no ip address shutdown duplex auto speed auto media-type rj45 ! ip forward-protocol nd ! ! no ip http server no ip http secure-server ! ! ! ! control-plane ! banner exec ^C ************************************************************************** * IOSv is strictly limited to use for evaluation, demonstration and IOS * * education. IOSv is provided as-is and is not supported by Cisco's * * Technical Advisory Center. Any use or disclosure, in whole or in part, * * of the IOSv Software or Documentation to any third party for any * * purposes is expressly prohibited except as otherwise authorized by * * Cisco in writing. * **************************************************************************^C banner incoming ^C ************************************************************************** * IOSv is strictly limited to use for evaluation, demonstration and IOS * * education. IOSv is provided as-is and is not supported by Cisco's * * Technical Advisory Center. Any use or disclosure, in whole or in part, * * of the IOSv Software or Documentation to any third party for any * * purposes is expressly prohibited except as otherwise authorized by * * Cisco in writing. * **************************************************************************^C banner login ^C ************************************************************************** * IOSv is strictly limited to use for evaluation, demonstration and IOS * * education. IOSv is provided as-is and is not supported by Cisco's * * Technical Advisory Center. Any use or disclosure, in whole or in part, * * of the IOSv Software or Documentation to any third party for any * * purposes is expressly prohibited except as otherwise authorized by * * Cisco in writing. * **************************************************************************^C ! line con 0 line aux 0 line vty 0 4 login transport input none ! no scheduler allocate ! end